CVE-2024-5135

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published May 20, 2024

CWE ID 89

Summary

CVE-2024-5135 is a critical vulnerability affecting PHPGurukul Directory Management System version 1.0. The issue lies in the processing of the file /admin/index.php, where manipulation of the argument "username" can lead to SQL injection. This vulnerability allows remote attackers to exploit the system. The exploit for this issue has been disclosed publicly, increasing the risk for potential attacks. The associated identifier for this vulnerability is VDB-265211.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Phpgurukul Directory Management System

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/wA_CGY
https://www.cve.org/CVERecord?id=CVE-2024-5135
https://nvd.nist.gov/vuln/detail/CVE-2024-5135

Back to Vulnerability Database

CVE-2024-5135

CVSS 3.1 Score 7.3 of 10 (high)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations