CVE-2024-5101 | SourceCodester Simple Inventory System 1.0 updateproduct.php ITEM sql injection

Inserito da Angelo Barbosa | Mag 18, 2024 | CVE

A vulnerability was found in SourceCodester Simple Inventory System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file updateproduct.php. The manipulation of the argument ITEM leads to sql injection.

This vulnerability was named CVE-2024-5101. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-5101 | SourceCodester Simple Inventory System 1.0 updateproduct.php ITEM sql injection

Post correlati

CVE-2024-25706 | Esri Portal for ArcGIS up to 11.0 cross site scripting

CVE-2024-35645 | vinoth06 Random Banner Plugin up to 4.2.8 on WordPress cross site scripting

CVE-2021-46954 | Linux Kernel up to 5.11.19/5.12.2 sched sch_fragment out-of-bounds (018bb8da5b58/8e6dfb7beeb6/31fe34a0118e)

CVE-2024-33002 | SAP S4 HANA Document Service Handler for DPS cross site scripting