CVE-2022-24571
CRITICALCar Driving School Management System v1.0 - SQL Injection
Title source: llmDescription
Car Driving School Management System v1.0 is affected by SQL injection in the login page. An attacker can use simple SQL login injection payload to get admin access.
References (3)
Core 3
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/nsparker1337/OpenSource/blob/main/exploit_sql
Exploit, Third Party Advisory x_refsource_misc
https://github.com/nu11secur1ty/CVE-mitre/tree/main/2022/CVE-2022-24571
Exploit, Third Party Advisory x_refsource_misc
https://www.nu11secur1ty.com/2022/03/cve-2022-24571.html
Scores
CVSS v3
9.8
EPSS
0.0032
EPSS Percentile
55.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-89
Status
published
Products (1)
car_driving_school_management_system_project/car_driving_school_management_system
1.0
Published
Feb 28, 2022
Tracked Since
Feb 18, 2026