cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-8345,https://securityvulnerability.io/vulnerability/CVE-2024-8345,SQL Injection Vulnerability in SourceCodester Music Gallery Site,"A critical vulnerability has been identified in SourceCodester's Music Gallery Site version 1.0, specifically affecting the functionality located in the file /classes/Users.php?f=delete. This security flaw allows remote attackers to manipulate the 'id' argument, thereby executing unauthorized SQL queries through SQL injection techniques. The publicly disclosed exploit poses significant risks as it could lead to unauthorized access to sensitive data or execution of arbitrary commands within the database. It is essential for users of this software to take immediate action to mitigate the risks associated with this vulnerability.",SourceCodester Music Gallery Site 1.0,Music Gallery Site,9.8,CRITICAL,0.0010900000343099236,false,,false,false,false,,,false,false,,2024-08-30T17:15:00.000Z,0
CVE-2024-8336,https://securityvulnerability.io/vulnerability/CVE-2024-8336,SQL Injection Vulnerability in SourceCodester Music Gallery Site,"A serious SQL injection vulnerability has been identified in the SourceCodester Music Gallery Site version 1.0. This flaw manifests in the Master.php file, particularly through the delete_music function where the argument 'id' can be manipulated by an attacker. This vulnerability allows for remote exploitation, potentially leading to unauthorized access to the database and leakage of sensitive data. The exploit has been publicly disclosed, increasing the urgency for users to apply adequate security measures and patches.",Sourcecodester,Music Gallery Site,9.8,CRITICAL,0.0010900000343099236,false,,false,false,true,2024-08-30T12:31:04.000Z,true,false,false,,2024-08-30T13:31:04.994Z,0
CVE-2024-8223,https://securityvulnerability.io/vulnerability/CVE-2024-8223,SQL Injection Vulnerability in SourceCodester Music Gallery Site,"A critical SQL injection vulnerability has been detected in SourceCodester Music Gallery Site version 1.0. This vulnerability resides in the /classes/Master.php file, specifically affecting the delete_category function when the 'id' argument is manipulated. Attackers can exploit this flaw to execute unauthorized SQL queries, potentially allowing remote access to sensitive data and compromising the application's security. The public disclosure of the exploit poses an immediate threat, urging users to take precautionary measures and apply necessary updates or patches to safeguard their installations.",Sourcecodester,Music Gallery Site,9.8,CRITICAL,0.0006300000241026282,false,,false,false,true,2024-08-27T21:31:07.000Z,true,false,false,,2024-08-27T22:31:07.080Z,0
CVE-2024-8222,https://securityvulnerability.io/vulnerability/CVE-2024-8222,SQL Injection Vulnerability in SourceCodester Music Gallery,"A significant security flaw has been identified in the SourceCodester Music Gallery Site version 1.0, where an SQL injection vulnerability exists within the /admin/?page=musics/manage_music file. This vulnerability allows an attacker to manipulate the 'id' argument, leading to unauthorized database access and potential data exposure. Given that the attack can be initiated remotely, it poses a serious threat to users of the platform. The exploit has been publicly disclosed, making it imperative for system administrators to implement immediate security measures to mitigate potential risks.",Sourcecodester,Music Gallery Site,9.8,CRITICAL,0.0006300000241026282,false,,false,false,true,2024-08-27T21:31:05.000Z,true,false,false,,2024-08-27T22:31:05.261Z,0
CVE-2024-8221,https://securityvulnerability.io/vulnerability/CVE-2024-8221,SQL Injection Vulnerability in SourceCodester Music Gallery Site,"A significant vulnerability has been identified in version 1.0 of the SourceCodester Music Gallery Site, specifically in the manage_category.php file located within the admin directory. Exploiting this vulnerability involves the improper handling of the 'id' argument, leading to SQL injection attacks. This flaw allows attackers to manipulate database queries, potentially allowing unauthorized access to sensitive data. The vulnerability can be exploited remotely, making systems running this software particularly susceptible to attacks. As the exploit has been publicly disclosed, it is crucial for users and administrators of affected products to take immediate actions to remediate this security issue.",Sourcecodester,Music Gallery Site,9.8,CRITICAL,0.0006300000241026282,false,,false,false,true,2024-08-27T21:00:07.000Z,true,false,false,,2024-08-27T22:00:07.459Z,0
CVE-2023-1054,https://securityvulnerability.io/vulnerability/CVE-2023-1054,SourceCodester Music Gallery Site sql injection,"An SQL injection vulnerability was discovered in the Music Gallery Site 1.0, specifically within an unidentified function of the /admin/?page=user/manage endpoint. This security flaw allows attackers to manipulate the 'id' argument, potentially enabling unauthorized remote access and data manipulation. Unsuspecting users of the Music Gallery Site could be at significant risk if this vulnerability is exploited.",SourceCodester,Music Gallery Site,9.8,CRITICAL,0.0015899999998509884,false,,false,false,false,,,false,false,,2023-02-27T11:15:00.000Z,0
CVE-2023-1053,https://securityvulnerability.io/vulnerability/CVE-2023-1053,SourceCodester Music Gallery Site view_category.php sql injection,"A SQL injection vulnerability exists in the Music Gallery Site by SourceCodester, particularly within the view_category.php file. This flaw allows an attacker to manipulate the 'id' argument, potentially leading to unauthorized access to the database and extraction of sensitive information. The attack can be initiated remotely, making it a significant security concern for users of the affected version, 1.0.",SourceCodester,Music Gallery Site,9.8,CRITICAL,0.0017999999690800905,false,,false,false,false,,,false,false,,2023-02-27T11:15:00.000Z,0
CVE-2023-0961,https://securityvulnerability.io/vulnerability/CVE-2023-0961,SourceCodester Music Gallery Site GET Request view_music_details.php sql injection,"A vulnerability exists in the Music Gallery Site 1.0 developed by SourceCodester, where improper handling of user input in the view_music_details.php file allows for SQL injection. The issue arises from the manipulation of the 'id' argument within the GET request, enabling attackers to execute unauthorized SQL commands. This vulnerability allows for remote exploitation, posing a significant risk to affected installations. The issue has been publicly disclosed, highlighting the urgency for users to implement security measures.",SourceCodester,Music Gallery Site,9.8,CRITICAL,0.08019000291824341,false,,false,false,false,,,false,false,,2023-02-22T19:15:00.000Z,0
CVE-2023-0963,https://securityvulnerability.io/vulnerability/CVE-2023-0963,SourceCodester Music Gallery Site POST Request Users.php access control,"A serious access control vulnerability exists in the Music Gallery Site version 1.0 by SourceCodester. This issue arises from inadequate processing within the Users.php file of the POST Request Handler, allowing attackers to manipulate access permissions improperly. As the exploit may be remotely initiated, it poses a significant security risk. This vulnerability has been publicly disclosed and could potentially be maliciously leveraged, highlighting the urgent need for remediation.",Sourcecodester,Music Gallery Site,7.3,HIGH,0.09038999676704407,false,,false,false,false,,,false,false,,2023-02-22T19:15:00.000Z,0
CVE-2023-0962,https://securityvulnerability.io/vulnerability/CVE-2023-0962,SourceCodester Music Gallery Site GET Request Master.php sql injection,"A vulnerability exists in the SourceCodester Music Gallery Site 1.0, where improper handling of the 'id' parameter in the Master.php file of the GET Request Handler component allows an attacker to execute SQL injection attacks remotely. This flaw could lead to unauthorized access to the database, enabling an attacker to manipulate or retrieve sensitive information. Given its public disclosure, the risk of exploitation is heightened, making it essential for users of this software to apply necessary patches and implement security measures.",SourceCodester,Music Gallery Site,8.8,HIGH,0.026189999654889107,false,,false,false,false,,,false,false,,2023-02-22T19:15:00.000Z,0
CVE-2023-0938,https://securityvulnerability.io/vulnerability/CVE-2023-0938,SourceCodester Music Gallery Site GET Request music_list.php sql injection,"A significant vulnerability has been identified in the SourceCodester Music Gallery Site. This issue stems from the manipulation of the cid parameter in the music_list.php file of the GET Request Handler. When exploited, it allows attackers to execute SQL injection attacks remotely, potentially compromising the integrity of the database. Given that this vulnerability has been publicly disclosed, it is crucial for users of this software to implement necessary security measures.",SourceCodester,Music Gallery Site,9.8,CRITICAL,0.002240000059828162,false,,false,false,false,,,false,false,,2023-02-21T10:15:00.000Z,0