CVE-2024-7813

Name of the Vulnerable Software and Affected Versions SourceCodester Prison Management System version 1.0

Description A vulnerability has been found in the SourceCodester Prison Management System, affecting some unknown processing of the file /uploadImage/Profile/ of the component Profile Image Handler. The manipulation leads to insufficiently protected credentials. The attack may be initiated remotely.

Recommendations For SourceCodester Prison Management System version 1.0, consider restricting access to the /uploadImage/Profile/ endpoint until a patch is available. As a temporary workaround, review and enhance credential protection mechanisms to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.