SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'username' in '/login.php' parameter.
History

Thu, 08 Aug 2024 15:45:00 +0000

Type Values Removed Values Added
First Time appeared Janobe
Janobe credit Card
Janobe debit Card Payment
Janobe paypal
Janobe school Attendence Monitoring System
Janobe school Event Management System
CPEs cpe:2.3:a:janobe:credit_card:1.0:*:*:*:*:*:*:*
cpe:2.3:a:janobe:debit_card_payment:1.0:*:*:*:*:*:*:*
cpe:2.3:a:janobe:paypal:1.0:*:*:*:*:*:*:*
cpe:2.3:a:janobe:school_attendence_monitoring_system:1.0:*:*:*:*:*:*:*
cpe:2.3:a:janobe:school_event_management_system:1.0:*:*:*:*:*:*:*
Vendors & Products Janobe
Janobe credit Card
Janobe debit Card Payment
Janobe paypal
Janobe school Attendence Monitoring System
Janobe school Event Management System

Wed, 07 Aug 2024 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: INCIBE

Published: 2024-08-06T11:55:59.506Z

Updated: 2024-08-07T18:06:55.076Z

Reserved: 2024-04-29T12:38:37.773Z

Link: CVE-2024-33971

cve-icon Vulnrichment

Updated: 2024-08-07T18:06:46.014Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-06T12:15:51.550

Modified: 2024-08-08T15:26:31.097

Link: CVE-2024-33971

cve-icon Redhat

No data.