Vulnerabilities (CVE)

Filtered by vendor Lopalopa Subscribe
Filtered by product Dynamic Lab Management System
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-0307 1 Lopalopa 1 Dynamic Lab Management System 2024-11-21 7.5 HIGH 7.3 HIGH
A vulnerability was found in Kashipara Dynamic Lab Management System up to 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login_process.php. The manipulation of the argument password leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-249874 is the identifier assigned to this vulnerability.
CVE-2024-0306 1 Lopalopa 1 Dynamic Lab Management System 2024-11-21 7.5 HIGH 7.3 HIGH
A vulnerability was found in Kashipara Dynamic Lab Management System up to 1.0. It has been classified as critical. This affects an unknown part of the file /admin/admin_login_process.php. The manipulation of the argument admin_password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-249873 was assigned to this vulnerability.