Vulnerability Description
A vulnerability has been found in PHPGurukul Zoo Management System 2.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/forgot-password.php. The manipulation of the argument email leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-266269 was assigned to this vulnerability.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Phpgurukul | Zoo Management System | 2.1 |
Related Weaknesses (CWE)
References
- https://vuldb.com/?ctiid.266269Permissions RequiredVDB Entry
- https://vuldb.com/?id.266269Permissions RequiredVDB Entry
- https://vuldb.com/?submit.343372Third Party AdvisoryVDB Entry
- https://www.yuque.com/yuqueyonghunhj6tg/ygf5oy/wzxsew2dfb84l3loBroken Link
- https://vuldb.com/?ctiid.266269Permissions RequiredVDB Entry
- https://vuldb.com/?id.266269Permissions RequiredVDB Entry
- https://vuldb.com/?submit.343372Third Party AdvisoryVDB Entry
- https://www.yuque.com/yuqueyonghunhj6tg/ygf5oy/wzxsew2dfb84l3loBroken Link
FAQ
What is CVE-2024-5357?
CVE-2024-5357 is a vulnerability with a CVSS score of 7.3 (HIGH). A vulnerability has been found in PHPGurukul Zoo Management System 2.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/forgot-password.php. Th...
How severe is CVE-2024-5357?
CVE-2024-5357 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-5357?
Check the references section above for vendor advisories and patch information. Affected products include: Phpgurukul Zoo Management System.