CVE-2024-53604 Information

Nov 28, 2024 cve

Description

A SQL Injection vulnerability was found in /covid-tms/check_availability.php in PHPGurukul COVID 19 Testing Management System v1.0 which allows remote attackers to execute arbitrary code via the mobnumber POST request parameter.

Reference

https://github.com/Santoshcyber1/CVE-wirteup/blob/main/Phpgurukul/COVID19/SQL%20Injection%20vulnerability%20mo.pdf

Share on: