CVE-2024-3255

Name of the Vulnerable Software and Affected Versions SourceCodester Internship Portal Management System version 1.0

Description A critical issue was found in the SourceCodester Internship Portal Management System. The problem is related to an unknown function of the file admin/edit admin query.php. The manipulation of the username, password, name, or admin id arguments leads to SQL injection. This issue can be exploited remotely.

Recommendations For SourceCodester Internship Portal Management System version 1.0, consider restricting access to the admin/edit admin query.php file until a patch is available. As a temporary workaround, avoid using the username, password, name, and admin id arguments in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.