CVE-2024-0347

Name of the Vulnerable Software and Affected Versions SourceCodester Engineers Online Portal version 1.0

Description A vulnerability was found in the processing of the file signup teacher.php, where the manipulation of the argument Password leads to weak password requirements. The attack may be initiated remotely, with a rather high complexity and difficult exploitation. The exploit has been disclosed to the public and may be used.

Recommendations For SourceCodester Engineers Online Portal version 1.0, consider implementing stronger password requirements to mitigate the risk of exploitation. As a temporary workaround, restrict the use of the Password argument in the signup teacher.php file until a more secure solution is implemented.