Login Sign Up

CVE-2024-10805

6.3 MEDIUM
SQL Injection

📋 TL;DR

This critical SQL injection vulnerability in University Event Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'id' parameter in doedit.php. Attackers can potentially read, modify, or delete database content, including sensitive user information. Organizations using this specific software version are affected.

💻 Affected Systems

Products:
  • University Event Management System
Versions: 1.0
Operating Systems: All platforms running PHP
Default Config Vulnerable: ⚠️ Yes
Notes: The vulnerability exists in doedit.php file; other parameters may also be vulnerable as noted in advisory.

📦 What is this software?

University Event Management System by Anisha

View all CVEs affecting University Event Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, data destruction, or full system takeover via SQL injection to RCE chaining.

🟠

Likely Case

Unauthorized data access and extraction of sensitive information like user credentials, personal data, or event details.

🟢

If Mitigated

Limited impact with proper input validation, parameterized queries, and database permissions restricting damage scope.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit details are publicly available on GitHub; remote exploitation is confirmed.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://code-projects.org/

Restart Required: No

Instructions:

No official patch available. Consider migrating to alternative software or implementing workarounds.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Add server-side validation to sanitize all user inputs, especially the 'id' parameter in doedit.php.

Edit doedit.php to implement parameterized queries or prepared statements

Web Application Firewall (WAF)

all

Deploy WAF rules to block SQL injection patterns targeting doedit.php.

Configure WAF to block requests containing SQL keywords in doedit.php parameters

🧯 If You Can't Patch

  • Isolate the system behind a firewall with strict access controls
  • Implement network segmentation to limit database access from web servers

🔍 How to Verify

Check if Vulnerable:

Test doedit.php with SQL injection payloads in the 'id' parameter; check for database errors or unexpected responses.

Check Version:

Check software documentation or configuration files for version information; typically found in readme files or admin panels.

Verify Fix Applied:

Verify that parameterized queries are implemented in doedit.php and test with SQL injection payloads to ensure they're blocked.

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL error messages in web server logs
  • Multiple requests to doedit.php with suspicious parameters

Network Indicators:

  • HTTP requests to doedit.php containing SQL keywords like UNION, SELECT, OR 1=1

SIEM Query:

source="web_server" AND uri="/doedit.php" AND (request_parameters CONTAINS "UNION" OR request_parameters CONTAINS "SELECT" OR request_parameters CONTAINS "OR 1=1")

📊 Metadata

CVE ID: CVE-2024-10805
CVSS v3 Score: 6.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
Published: November 4, 2024
Last Updated: November 7, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-10805, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)