How severe is CVE-2024-12942?

CVE-2024-12942 has a CVSS v3 score of 7.3 (HIGH).

CVE-2024-12942

Name: portfolio_management_system_mca
Author: 1000projects

7.3HIGH

A vulnerability was found in 1000 Projects Portfolio Management System MCA 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/admin_login.php. The manipulation

Published: 12/26/2024Updated: 3/1/2025

Description

A vulnerability was found in 1000 Projects Portfolio Management System MCA 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/admin_login.php. The manipulation of the argument username/password leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

AI AnalysisPowered by AI

Affected Products

1000projectsportfolio_management_system_mca

1.0

References

https://1000projects.org/
Product
https://github.com/dawatermelon/CVE/blob/main/Portfolio%20Management%20System%20MCA%20Project/README.md
ExploitThird Party Advisory
https://vuldb.com/?ctiid.289302
Permissions RequiredVDB Entry
https://vuldb.com/?id.289302
Third Party AdvisoryVDB Entry
https://vuldb.com/?submit.468329
Third Party AdvisoryVDB Entry