cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-5378,https://securityvulnerability.io/vulnerability/CVE-2024-5378,SQL Injection Vulnerability in SourceCodester School Intramurals Student Attendance Management System,"A critical vulnerability has been identified in version 1.0 of the SourceCodester School Intramurals Student Attendance Management System, specifically in the file manage_sy.php. This vulnerability allows an attacker to perform SQL injection through the manipulation of the 'id' argument. The exploitation can be executed remotely, posing significant risks to the integrity and security of the database and user data. As the exploit has been publicly disclosed, immediate action is recommended to mitigate potential attacks. Users of the affected product should assess their systems and implement necessary security measures to protect against unauthorized access and data breaches.",Sourcecodester,School Intramurals Student Attendance Management System,9.8,CRITICAL,0.00044999999227002263,false,,false,false,true,2024-05-26T20:31:03.000Z,true,false,false,,2024-05-26T21:31:03.428Z,0
CVE-2024-4926,https://securityvulnerability.io/vulnerability/CVE-2024-4926,SQL Injection Vulnerability in SourceCodester Student Attendance Management System,"A critical SQL injection vulnerability has been identified in the SourceCodester School Intramurals Student Attendance Management System version 1.0. This flaw resides in the manage_student.php file, where an unsafe handling of the 'id' parameter allows an attacker to manipulate SQL queries. The vulnerability's exploitation can be executed remotely, posing a significant risk to the integrity and confidentiality of the database. Given that the exploit has been publicly disclosed, organizations using this software should take immediate action to protect sensitive data from unauthorized access by reviewing their security posture and applying necessary updates to mitigate this risk.",Sourcecodester,School Intramurals Student Attendance Management System,6.5,MEDIUM,0.00044999999227002263,false,,false,false,true,2024-05-16T01:00:04.000Z,true,false,false,,2024-05-16T02:00:04.407Z,0
CVE-2024-4925,https://securityvulnerability.io/vulnerability/CVE-2024-4925,SQL Injection Vulnerability in SourceCodester School Attendance Management System,"A significant SQL injection vulnerability has been identified in SourceCodester's School Intramurals Student Attendance Management System version 1.0. This vulnerability exists in the file /intrams_sams/manage_course.php, where improper handling of the 'id' argument allows attackers to manipulate SQL queries. As a result, this could permit unauthorized access to sensitive information from the database. The nature of this exploitation is remote, meaning that attackers can initiate the attack without local access to the system. Security professionals are urged to take immediate action to secure their systems, considering that the exploit has been made public and is actively circulating in the wild. For further information, refer to VDB-264461, which details the technical aspects of this vulnerability.",Sourcecodester,School Intramurals Student Attendance Management System,6.5,MEDIUM,0.00044999999227002263,false,,false,false,true,2024-05-16T00:31:05.000Z,true,false,false,,2024-05-16T01:31:05.274Z,0