cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-5116,https://securityvulnerability.io/vulnerability/CVE-2024-5116,SQL Injection Vulnerability in SourceCodester Online Examination System,"A recently discovered vulnerability in SourceCodester's Online Examination System version 1.0 allows for SQL injection through improper handling of the 'vote' parameter in the save.php file. This flaw could be exploited remotely, enabling attackers to manipulate the database without proper authorization. The SQL injection may lead to unauthorized data access or data manipulation, posing significant risks to overall system integrity and confidentiality. Users of the affected version are strongly advised to implement security patches and review their systems for potential exploits.",SourceCodester,Online Examination System,9.8,CRITICAL,0.00044999999227002263,false,,false,false,false,,,false,false,,2024-05-20T04:15:00.000Z,0
CVE-2024-5046,https://securityvulnerability.io/vulnerability/CVE-2024-5046,SQL Injection Vulnerability in SourceCodester Online Examination System,"A critical SQL injection vulnerability has been identified in the registeracc.php file of SourceCodester's Online Examination System version 1.0. The vulnerability allows attackers to manipulate the 'email' argument, leading to unauthorized SQL queries being executed against the database. This security flaw enables remote exploitation, making the system susceptible to data breaches and unauthorized access to sensitive information. Given its public disclosure, it is essential for administrators using this product to implement immediate security measures to mitigate potential attacks.",Sourcecodester,Online Examination System,9.8,CRITICAL,0.00044999999227002263,false,,false,false,true,2024-05-17T12:00:06.000Z,true,false,false,,2024-05-17T13:00:06.517Z,0