Alireza Gharib Blog

CVE-2024-54818 – SourceCodester Computer Laboratory Management System Unauthenticated Remote OS Command Injection

CVE ID : CVE-2024-54818

Published : Jan. 8, 2025, 7:15 p.m. | 2 hours, 28 minutes ago

Description : SourceCodester Computer Laboratory Management System 1.0 is vulnerable to Incorrect Access Control. via /php-lms/admin/?page=user/list.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Go to Source

Tags: #cve, #cybersecurity, #go, #management, #remote, #security, #un

Related Posts

CVE-2025-22145 – Carbon PHP DateTime Remote File Include Vulnerability SonicWall urges admins to patch exploitable SSLVPN bug immediately CVE-2025-22140 – WeGIA SQL Injection Vulnerability (Authenticated) CVE-2025-22137 – Pingvin Share File Traversal CVE-2025-0291 – Google Chrome Type Confusion Vulnerability CVE-2025-0194 – GitLab Information Disclosure CVE-2024-55656 – Redis RedisBloom Probabilistic Data Structures Integer Overflow Information Leak Out-of-Bounds Write CVE-2024-52869 – Teradata SUSE Enterprise Linux Server Elevated Privilege Group Misassignment CVE-2024-13190 – ZeroWdd Myblog Xml Injection CVE-2024-13189 – ZeroWdd MyBlog Remote File Permission Bypass Vulnerability CVE-2024-12853 – WordPress Modula Image Gallery Remote File Upload Vulnerability CVE-2024-12431 – GitLab Unauthorized Issue Status Manipulation Hackers exploit KerioControl firewall flaw to steal admin CSRF tokens CVE-2025-22143 – WeGIA Web Manager Reflected Cross-Site Scripting CVE-2025-22141 – WeGIA Web Manager SQL Injection Vulnerability CVE-2025-0282 (CVSS 9.0): Ivanti Confirms Active Exploitation of Critical Flaw CVE-2024-55517 – Polaris FT Intellect Core Banking SQL Injection CVE-2024-54010 – Aruba Networking CX 10000 Series Switches ICMP and UDP Packet Forwarding Vulnerability CVE-2024-53995 – SickChill Open Redirect Vulnerability
, , , ,
, , , , , ,
Recent Posts