1. Home
  2. CVE Database
  3. CVE-2024-34226
CRITICAL · 9.4

CVE-2024-34226

SQL injection vulnerability in /php-sqlite-vms/?page=manage_visitor&id=1 in SourceCodester Visitor Management System 1.0 allow attackers to execute arbitrary SQL commands via the id parameters.

Vulnerability Description

SQL injection vulnerability in /php-sqlite-vms/?page=manage_visitor&id=1 in SourceCodester Visitor Management System 1.0 allow attackers to execute arbitrary SQL commands via the id parameters.

CVSS Score

9.4

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
LOW

Affected Products

VendorProductVersions
Oretnom23Visitor Management System1.0

Related Weaknesses (CWE)

CWE-89

References

FAQ

What is CVE-2024-34226?

CVE-2024-34226 is a vulnerability with a CVSS score of 9.4 (CRITICAL). SQL injection vulnerability in /php-sqlite-vms/?page=manage_visitor&id=1 in SourceCodester Visitor Management System 1.0 allow attackers to execute arbitrary SQL commands via the id parameters.

How severe is CVE-2024-34226?

CVE-2024-34226 has been rated CRITICAL with a CVSS base score of 9.4/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2024-34226?

Check the references section above for vendor advisories and patch information. Affected products include: Oretnom23 Visitor Management System.