cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-6440,https://securityvulnerability.io/vulnerability/CVE-2024-6440,SQL Injection Vulnerability in SourceCodester Home Owners Collection Management System,"A critical SQL injection vulnerability exists in the Home Owners Collection Management System (version 1.0) developed by SourceCodester. This vulnerability is triggered through the 'delete_category' function located in the /classes/Master.php file. When an attacker manipulates the 'id' parameter of this function, they can execute arbitrary SQL commands that could lead to unauthorized access or manipulation of the database. This vulnerability can be exploited remotely, posing a significant risk to the security and confidentiality of sensitive data managed by the application. Given its public disclosure, it is essential for users and administrators to take immediate action to secure their systems.",SourceCodester,Home Owners Collection Management System,9.8,CRITICAL,0.006579999811947346,false,,false,false,false,,,false,false,,2024-07-02T11:15:00.000Z,0
CVE-2024-6439,https://securityvulnerability.io/vulnerability/CVE-2024-6439,Unrestricted File Upload Vulnerability in SourceCodester Home Owners Collection Management System,"A significant vulnerability has been discovered in the SourceCodester Home Owners Collection Management System version 1.0, categorized as an unrestricted file upload flaw. This vulnerability arises from improper handling of file uploads in the '/classes/Users.php?f=save' endpoint, where an attacker can manipulate the 'img' parameter to upload arbitrary files. This security loophole allows unauthorized individuals to execute remote code, leading to serious threats like server compromise and data breaches. The details of this exploit have been publicly disclosed, heightening the urgency for users to implement necessary security measures and updates. It is crucial for organizations using this system to address this vulnerability immediately to safeguard their data and infrastructure.",SourceCodester,Home Owners Collection Management System,9.8,CRITICAL,0.010259999893605709,false,,false,false,false,,,false,false,,2024-07-02T11:15:00.000Z,0