CVE-2020-24193

CRITICAL

Sourcecodetester Daily Tracker System 1.0 - SQL Injection

Title source: llm

Description

A SQL injection vulnerability in login in Sourcecodetester Daily Tracker System 1.0 allows unauthenticated user to execute authentication bypass with SQL injection via the email parameter.

Exploits (1)

exploitdb WORKING POC

by Adeeb Shah · textwebappsphp

https://www.exploit-db.com/exploits/48787

View Code ZIP pw:eip

References (2)

[Broken Link] http://sourcecodetester.com

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/48787

Scores

CVSS v3 9.8

EPSS 0.0217

EPSS Percentile 84.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-89

Status published

Products (1)

daily_tracker_system_project/daily_tracker_system 1.0

Published Sep 03, 2020

Tracked Since Feb 18, 2026