CVE-2024-40472

Sourcecodester Daily Calories Monitoring Tool v1.0 is vulnerable to SQL Injection via "delete-calorie.php."
Configurations

Configuration 1 (hide)

cpe:2.3:a:rems:daily_calories_monitoring_tool:1.0:*:*:*:*:*:*:*

History

15 Aug 2024, 13:25

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 6.5
v2 : unknown
v3 : 9.8
Summary
  • (es) Sourcecodester Daily Calories Monitoring Tool v1.0 es vulnerable a la inyección SQL a través de "delete-calory.php".
First Time Rems
Rems daily Calories Monitoring Tool
CPE cpe:2.3:a:rems:daily_calories_monitoring_tool:1.0:*:*:*:*:*:*:*
References () https://github.com/takekaramey/CVE_Writeup/blob/main/Sourcecodester/Daily%20Calories%20Monitoring%20Tool%20v1.0/SQL%20Injection.pdf - () https://github.com/takekaramey/CVE_Writeup/blob/main/Sourcecodester/Daily%20Calories%20Monitoring%20Tool%20v1.0/SQL%20Injection.pdf - Third Party Advisory
References () https://www.sourcecodester.com/php/17445/daily-calories-monitoring-tool-using-php-and-mysql-source-code.html - () https://www.sourcecodester.com/php/17445/daily-calories-monitoring-tool-using-php-and-mysql-source-code.html - Product

13 Aug 2024, 01:13

Type Values Removed Values Added
CWE CWE-89
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.5

12 Aug 2024, 13:41

Type Values Removed Values Added
New CVE

Information

Published : 2024-08-12 13:38

Updated : 2024-08-15 13:25


NVD link : CVE-2024-40472

Mitre link : CVE-2024-40472

CVE.ORG link : CVE-2024-40472


JSON object : View

Products Affected

rems

  • daily_calories_monitoring_tool
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')