First published: Tue Mar 12 2024(Updated: )
A vulnerability was found in SourceCodester CRUD without Page Reload 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file add_user.php. The manipulation of the argument city leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-256453 was assigned to this vulnerability.
Credit: cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
SourceCodester CRUD without Page Reload | ||
Remyandrade Crud Without Page Reload | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-2393 has been declared as a critical vulnerability.
CVE-2024-2393 affects SourceCodester CRUD without Page Reload version 1.0.
CVE-2024-2393 is an SQL injection vulnerability resulting from improper handling of the city argument in the add_user.php file.
To mitigate CVE-2024-2393, validate and sanitize user inputs to prevent SQL injection attacks.
Fix CVE-2024-2393 by updating your application to a version that addresses this vulnerability or by implementing input validation.