Key Vulnerability Information Vulnerability Title: SourceCodester Simple Subscription Website 1.0 - manage_plan.php ID SQL Injection Identifiers: - VDB-258301 - CVE-2024-3015 - GCVE-100-258301 CVSS Meta Temp Score: 6.9 Current Exploit Price: $0-$5k CTI Interest Score: 0.00 Summary Type: Critical vulnerability Affected Product: SourceCodester Simple Subscription Website 1.0 Vulnerable Component: Unknown function of Vulnerability: Manipulation of the argument causes SQL injection. Exploitation: Possible remotely; an exploit exists. Details Vulnerability Definition (CWE): CWE-89 Impact: Affects confidentiality, integrity, and availability. Additional Info Advisory Source: GitHub Exploit Availability: Public exploit available on GitHub. Search Query for Exploit: inurl:manage_plan.php Attack Technique: T1505 (MITRE ATT&CK)