A vulnerability was found in SourceCodester Online Payroll System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/login.php. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-224990 is the identifier assigned to this vulnerability.
References
Link | Resource |
---|---|
https://github.com/E1CHO/cve_hub/blob/main/Online%20Payroll%20System%20in%20PHP%20and%20MySQL%20Free%20Download%20A%20Comprehensive%20Guide/Online%20Payroll%20System%20in%20PHP%20and%20MySQL%20Free%20Download%20A%20Comprehensive%20Guide%20-%20vlun%206.pdf | Exploit Third Party Advisory |
https://vuldb.com/?ctiid.224990 | Permissions Required Third Party Advisory VDB Entry |
https://vuldb.com/?id.224990 | Permissions Required Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: VulDB
Published: 2023-04-05T07:31:03.643Z
Updated: 2023-10-21T16:59:43.721Z
Reserved: 2023-04-05T05:50:07.604Z
Link: CVE-2023-1850
JSON object: View
NVD Information
Status : Modified
Published: 2023-04-05T08:15:07.423
Modified: 2024-05-17T02:18:30.123
Link: CVE-2023-1850
JSON object: View
Redhat Information
No data.
CWE