First published: Wed Feb 28 2024(Updated: )
SQL Injection vulnerability in /zms/admin/changeimage.php in PHPGurukul Zoo Management System 1.0 allows attackers to run arbitrary SQL commands via the editid parameter.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
PHPGURUKUL Zoo Management System | ||
PHPGURUKUL Zoo Management System | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-25351 has been classified as a high severity SQL Injection vulnerability.
To fix CVE-2024-25351, validate and sanitize input for the editid parameter in the changeimage.php file.
CVE-2024-25351 affects PHPGurukul Zoo Management System version 1.0.
Yes, CVE-2024-25351 allows attackers to execute arbitrary SQL commands, which can lead to unauthorized access to the database.
Yes, CVE-2024-25351 is recognized as a known vulnerability that has been documented in various cybersecurity databases.