Vulnerability Details CVE-2024-3465
A vulnerability was found in SourceCodester Laundry Management System 1.0. It has been classified as critical. Affected is the function laporan_filter of the file /application/controller/Transaki.php. The manipulation of the argument dari/sampai leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-259746 is the identifier assigned to this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.5%
CVSS Severity
CVSS v3 Score 6.3
CVSS v2 Score 6.5
References
- https://github.com/fubxx/CVE/blob/main/LaundryManagementSystemSQL3.md
- https://vuldb.com/?ctiid.259746
- https://vuldb.com/?id.259746
- https://vuldb.com/?submit.312313
- https://github.com/fubxx/CVE/blob/main/LaundryManagementSystemSQL3.md
- https://vuldb.com/?ctiid.259746
- https://vuldb.com/?id.259746
- https://vuldb.com/?submit.312313
Products affected by CVE-2024-3465
-
cpe:2.3:a:oretnom23:laundry_shop_management_system:1.0