A SQL injection vulnerability in "/index.php" of Kashipara Live Membership System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the email or password Login parameters.
Metrics
Affected Vendors & Products
References
History
Fri, 09 Aug 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Kashipara
Kashipara live Membership System |
|
Weaknesses | CWE-89 | |
CPEs | cpe:2.3:a:kashipara:live_membership_system:1.0:*:*:*:*:*:*:* | |
Vendors & Products |
Kashipara
Kashipara live Membership System |
|
Metrics |
cvssV3_1
|
Thu, 08 Aug 2024 19:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A SQL injection vulnerability in "/index.php" of Kashipara Live Membership System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the email or password Login parameters. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-08-08T00:00:00
Updated: 2024-08-09T14:03:49.800Z
Reserved: 2024-07-05T00:00:00
Link: CVE-2024-40486
Vulnrichment
Updated: 2024-08-09T14:02:14.779Z
NVD
Status : Awaiting Analysis
Published: 2024-08-12T13:38:29.360
Modified: 2024-08-13T01:13:52.383
Link: CVE-2024-40486
Redhat
No data.