Vulnerability Description
Car Driving School Management System v1.0 is affected by SQL injection in the login page. An attacker can use simple SQL login injection payload to get admin access.
CVSS Score
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Car Driving School Management System Project | Car Driving School Management System | 1.0 |
Related Weaknesses (CWE)
References
- https://github.com/nsparker1337/OpenSource/blob/main/exploit_sqlExploitThird Party Advisory
- https://github.com/nu11secur1ty/CVE-mitre/tree/main/2022/CVE-2022-24571ExploitThird Party Advisory
- https://www.nu11secur1ty.com/2022/03/cve-2022-24571.htmlExploitThird Party Advisory
- https://github.com/nsparker1337/OpenSource/blob/main/exploit_sqlExploitThird Party Advisory
- https://github.com/nu11secur1ty/CVE-mitre/tree/main/2022/CVE-2022-24571ExploitThird Party Advisory
- https://www.nu11secur1ty.com/2022/03/cve-2022-24571.htmlExploitThird Party Advisory
FAQ
What is CVE-2022-24571?
CVE-2022-24571 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Car Driving School Management System v1.0 is affected by SQL injection in the login page. An attacker can use simple SQL login injection payload to get admin access.
How severe is CVE-2022-24571?
CVE-2022-24571 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-24571?
Check the references section above for vendor advisories and patch information. Affected products include: Car Driving School Management System Project Car Driving School Management System.