CVE-2024-3376

Name of the Vulnerable Software and Affected Versions SourceCodester Computer Laboratory Management System version 1.0

Description A critical vulnerability has been found in the SourceCodester Computer Laboratory Management System. This issue affects an unknown part of the file config.php. The manipulation of the url argument leads to execution after redirect, allowing for remote initiation of the attack. The exploit has been disclosed to the public.

Recommendations For version 1.0, consider restricting access to the config.php file to minimize the risk of exploitation. As a temporary workaround, avoid using the url argument in sensitive operations until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.