CVE-2024-5384
SourceCodester Facebook News Feed Like index.php sql injection
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability classified as critical was found in SourceCodester Facebook News Feed Like 1.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument page leads to sql injection. The attack can be initiated remotely. VDB-266302 is the identifier assigned to this vulnerability.
Una vulnerabilidad fue encontrada en SourceCodester Facebook News Feed Like 1.0 y clasificada como crítica. Esta vulnerabilidad afecta a un código desconocido del archivo index.php. La manipulación de la página de argumentos conduce a la inyección de SQL. El ataque se puede iniciar de forma remota. VDB-266302 es el identificador asignado a esta vulnerabilidad.
In SourceCodester Facebook News Feed Like 1.0 wurde eine Schwachstelle entdeckt. Sie wurde als kritisch eingestuft. Betroffen ist eine unbekannte Verarbeitung der Datei index.php. Durch die Manipulation des Arguments page mit unbekannten Daten kann eine sql injection-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk passieren.
CVSS Scores
SSVC
- Decision:Track
Timeline
- 2024-05-25 CVE Reserved
- 2024-05-26 CVE Published
- 2024-05-27 EPSS Updated
- 2024-08-01 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://vuldb.com/?id.266302 | Technical Description | |
| https://vuldb.com/?submit.344502 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| SourceCodester Search vendor "SourceCodester" | Facebook News Feed Like Search vendor "SourceCodester" for product "Facebook News Feed Like" | 1.0 Search vendor "SourceCodester" for product "Facebook News Feed Like" and version "1.0" | en |
Affected
| ||||||