cve/2024/CVE-2024-40402.md

### [CVE-2024-40402](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40402)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

A SQL injection vulnerability was found in 'ajax.php' of Sourcecodester Simple Library Management System 1.0. This vulnerability stems from insufficient user input validation of the 'username' parameter, allowing attackers to inject malicious SQL queries.

### POC

#### Reference
- https://github.com/CveSecLook/cve/issues/49

#### Github
No PoCs found on GitHub currently.
Update CVE sources 2024-08-05 18:41 2024-08-05 18:41:32 +00:00			`### [CVE-2024-40402](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40402)`
			`![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)`

			`### Description`

			`A SQL injection vulnerability was found in 'ajax.php' of Sourcecodester Simple Library Management System 1.0. This vulnerability stems from insufficient user input validation of the 'username' parameter, allowing attackers to inject malicious SQL queries.`

			`### POC`

			`#### Reference`
			`- https://github.com/CveSecLook/cve/issues/49`

			`#### Github`
			`No PoCs found on GitHub currently.`