CVE-2024-57687 Information

Description

An OS Command Injection vulnerability was found in /landrecordsys/admin/dashboard.php in PHPGurukul Land Record System v1.0 which allows remote attackers to execute arbitrary code via the \Cookie\ GET request parameter.

Reference

https://github.com/Santoshcyber1/CVE-wirteup/blob/main/Phpgurukul/Land%20record/Command%20Injection.pdf