CVE-2024-5361

Name of the Vulnerable Software and Affected Versions PHPGurukul Zoo Management System version 2.1

Description A critical issue affects the processing of the file /admin/normal-bwdates-reports-details.php, where the manipulation of the fromdate argument leads to SQL injection. The attack can be initiated remotely.

Recommendations For PHPGurukul Zoo Management System version 2.1, consider disabling access to the /admin/normal-bwdates-reports-details.php file until a patch is available. Restrict the use of the fromdate argument in this file to minimize the risk of SQL injection exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.