CVE-2024-0188

Name of the Vulnerable Software and Affected Versions RRJ Nueva Ecija Engineer Online Portal version 1.0

Description A vulnerability was found in the RRJ Nueva Ecija Engineer Online Portal, affecting an unknown part of the file change password teacher.php. This issue leads to weak password requirements. The attack can be initiated remotely, with a rather high complexity and difficult exploitability. The exploit has been disclosed to the public.

Recommendations For RRJ Nueva Ecija Engineer Online Portal version 1.0, consider implementing stronger password requirements to mitigate the risk of exploitation. As a temporary workaround, restrict access to the change password teacher.php file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.