cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-5051,https://securityvulnerability.io/vulnerability/CVE-2024-5051,SQL Injection Vulnerability in SourceCodester Gas Agency Management System,"A serious SQL injection vulnerability has been identified in the SourceCodester Gas Agency Management System version 1.0, specifically affecting the `edituser.php` file. This vulnerability arises from improper input validation in the `id` parameter, allowing attackers to manipulate SQL queries executed by the web application. As a result, an attacker can potentially gain unauthorized access to sensitive data stored in the database, leading to data leakage or corruption. Given that this vulnerability can be exploited remotely, it poses a significant security risk to organizations using the affected system. It is essential for users to review their exposure and implement appropriate security measures, such as updating to a patched version or employing web application firewalls to filter malicious requests.",Sourcecodester,Gas Agency Management System,8.8,HIGH,0.00044999999227002263,false,,false,false,true,2024-05-17T13:31:04.000Z,true,false,false,,2024-05-17T14:31:04.711Z,0
CVE-2022-2802,https://securityvulnerability.io/vulnerability/CVE-2022-2802,SourceCodester Gas Agency Management System login.php sql injection,A vulnerability has been found in SourceCodester Gas Agency Management System and classified as critical. This vulnerability affects unknown code of the file gasmark/login.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-206248.,Sourcecodester,Gas Agency Management System,7.3,HIGH,0.0028800000436604023,false,,false,false,false,,,false,false,,2022-08-12T19:45:36.000Z,0
CVE-2022-2779,https://securityvulnerability.io/vulnerability/CVE-2022-2779,SourceCodester Gas Agency Management System oneWord.php unrestricted upload,A vulnerability classified as critical was found in SourceCodester Gas Agency Management System. Affected by this vulnerability is an unknown functionality of the file /gasmark/assets/myimages/oneWord.php. The manipulation of the argument shell leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-206173 was assigned to this vulnerability.,Sourcecodester,Gas Agency Management System,6.3,MEDIUM,0.003659999929368496,false,,false,false,false,,,false,false,,2022-08-12T09:25:09.000Z,0