Vulnerability Description
A vulnerability was found in Campcodes House Rental Management System 1.0. It has been classified as critical. Affected is an unknown function of the file ajax.php. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-257982 is the identifier assigned to this vulnerability.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Campcodes | House Rental Management System | 1.0 |
Related Weaknesses (CWE)
References
- https://github.com/E1CHO/cve_hub/blob/main/House%20Rental%20Management%20System%Exploit
- https://vuldb.com/?ctiid.257982Permissions RequiredVDB Entry
- https://vuldb.com/?id.257982Permissions RequiredVDB Entry
- https://vuldb.com/?submit.303671Third Party AdvisoryVDB Entry
- https://github.com/E1CHO/cve_hub/blob/main/House%20Rental%20Management%20System%Exploit
- https://vuldb.com/?ctiid.257982Permissions RequiredVDB Entry
- https://vuldb.com/?id.257982Permissions RequiredVDB Entry
- https://vuldb.com/?submit.303671Third Party AdvisoryVDB Entry
FAQ
What is CVE-2024-2916?
CVE-2024-2916 is a vulnerability with a CVSS score of 7.3 (HIGH). A vulnerability was found in Campcodes House Rental Management System 1.0. It has been classified as critical. Affected is an unknown function of the file ajax.php. The manipulation of the argument us...
How severe is CVE-2024-2916?
CVE-2024-2916 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-2916?
Check the references section above for vendor advisories and patch information. Affected products include: Campcodes House Rental Management System.