CVE-2024-5119

Name of the Vulnerable Software and Affected Versions: SourceCodester Event Registration System version 1.0

Description: A critical issue affects the processing of the file /classes/Master.php?f=load registration, where the manipulation of the argument last id/event id leads to sql injection. The attack can be initiated remotely.

Recommendations: For SourceCodester Event Registration System version 1.0, consider restricting access to the last id and event id arguments in the /classes/Master.php?f=load registration file to minimize the risk of sql injection exploitation. As a temporary workaround, avoid using the last id and event id arguments in the affected file until a patch is available.