CVE-2024-7813
MEDIUMPrison Management System - Insufficiently Protected Credentials
Title source: ruleDescription
A vulnerability, which was classified as problematic, has been found in SourceCodester Prison Management System 1.0. This issue affects some unknown processing of the file /uploadImage/Profile/ of the component Profile Image Handler. The manipulation leads to insufficiently protected credentials. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
References (4)
Scores
CVSS v3
5.3
EPSS
0.0030
EPSS Percentile
53.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Classification
CWE
CWE-522
Status
published
Affected Products (1)
prison_management_system_project/prison_management_system
Timeline
Published
Aug 15, 2024
Tracked Since
Feb 18, 2026