CVE-2024-33967

NVD Published Date: August 06, 2024 at 12:15 PM
NVD Last Modified: August 08, 2024 at 03:27 PM
Download Patch
Vulnerability ID
CVE-2024-33967
Severity
HIGH
Severity Score
7.5
Summary
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'view' in 'Attendance' and 'YearLevel' in '/AttendanceMonitoring/report/attendance_print.php' parameter.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE ID
CWE-89

Recent Publish

CVE-2024-33964

CVE-2024-33974

CVE-2024-33971

CVE-2024-33972

CVE-2024-33965

CVE-2024-33968

See SecOps Solution
in action

Schedule Demo