cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-3466,https://securityvulnerability.io/vulnerability/CVE-2024-3466,SQL Injection Vulnerability in SourceCodester Laundry Management System,"A critical SQL injection vulnerability has been identified in the SourceCodester Laundry Management System version 1.0. The vulnerability specifically resides in the 'laporan_filter' function found in the '/application/controller/Pengeluaran.php' file. By manipulating the input arguments 'dari' and 'sampai', attackers can execute arbitrary SQL queries, potentially leading to unauthorized access to the database or exposure of sensitive information. Organizations using this system are urged to implement immediate mitigation measures to safeguard against exploitation.",Sourcecodester,Laundry Management System,8.8,HIGH,0.00798999983817339,false,,false,false,false,,,false,false,,2024-04-08T21:00:05.590Z,0
CVE-2024-3465,https://securityvulnerability.io/vulnerability/CVE-2024-3465,SQL Injection Vulnerability in SourceCodester Laundry Management System,"The SourceCodester Laundry Management System version 1.0 is vulnerable to a SQL injection exploit found in the 'laporan_filter' function within the 'Transaki.php' controller. This critical vulnerability allows an attacker to manipulate the parameters 'dari' and 'sampai' to execute unauthorized SQL commands. As a result, sensitive data may be accessed or modified remotely. Given that this exploit has been publicly disclosed, it is crucial for users and administrators of this application to apply necessary security patches and implement defensive measures to mitigate the risks associated with this vulnerability. Ensure that your installation is current and monitor for any unusual activity.",Sourcecodester,Laundry Management System,9.8,CRITICAL,0.00215999991632998,false,,false,false,true,2024-04-08T19:31:04.000Z,true,false,false,,2024-04-08T20:31:04.757Z,0
CVE-2024-3464,https://securityvulnerability.io/vulnerability/CVE-2024-3464,SQL Injection Vulnerability in SourceCodester Laundry Management System,"A significant security flaw has been identified in the SourceCodester Laundry Management System version 1.0, specifically within the laporan_filter function located in the /application/controller/Pelanggan.php file. This vulnerability permits the manipulation of the 'jeniskelamin' parameter, leading to an SQL injection attack. Attackers can exploit this weakness remotely, which can result in unauthorized access to the database and exposure of sensitive information. Given the widespread dissemination of the exploit, it is imperative for users of this software to apply immediate remediation measures to safeguard their data integrity and protect against potential data breaches.",Sourcecodester,Laundry Management System,9.8,CRITICAL,0.00215999991632998,false,,false,false,true,2024-04-08T19:00:05.000Z,true,false,false,,2024-04-08T20:00:05.612Z,0
CVE-2024-3463,https://securityvulnerability.io/vulnerability/CVE-2024-3463,Cross Site Scripting Vulnerability in SourceCodester Laundry Management System 1.0,A vulnerability has been found in SourceCodester Laundry Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /karyawan/edit. The manipulation of the argument karyawan leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-259744.,Sourcecodester,Laundry Management System,5.4,MEDIUM,0.00418000016361475,false,,false,false,true,2024-04-08T18:31:04.000Z,true,false,false,,2024-04-08T19:31:04.361Z,0
CVE-2024-3445,https://securityvulnerability.io/vulnerability/CVE-2024-3445,SQL Injection Vulnerability in SourceCodester Laundry Management System,"The SourceCodester Laundry Management System 1.0 is susceptible to a critical SQL injection vulnerability that allows attackers to manipulate the 'data_karyawan' parameter within the '/karyawan/laporan_filter' file. This flaw originates from insufficient input validation, enabling unauthorized users to execute arbitrary SQL commands, potentially compromising sensitive data. As this vulnerability can be exploited remotely, it poses a significant risk to systems using this outdated version. Organizations utilizing this software should implement immediate protective measures, including updating to the latest version or employing web application firewalls to mitigate risks.",Sourcecodester,Laundry Management System,9.8,CRITICAL,0.00215999991632998,false,,false,false,true,2024-04-08T14:31:04.000Z,true,false,false,,2024-04-08T15:31:04.755Z,0