Sourcecodester · Sourcecodester Facebook News Feed Like · CVE-2024-5384
Name of the Vulnerable Software and Affected Versions:
SourceCodester Facebook News Feed Like version 1.0
Description:
A critical issue was found in the software, affecting the file index.php. The manipulation of the `page` argument leads to SQL injection. The attack can be initiated remotely.
Recommendations:
For version 1.0, consider restricting access to the `index.php` file or disabling the manipulation of the `page` argument to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.