CVE-2024-6372 | itsourcecode Tailoring Management System 1.0 customeradd.php sql injection

Inserito da Angelo Barbosa | Giu 27, 2024 | CVE

A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System 1.0. This affects an unknown part of the file customeradd.php. The manipulation of the argument fullname/address/phonenumber/sex/email/city/comment leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-6372. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-6372 | itsourcecode Tailoring Management System 1.0 customeradd.php sql injection

Post correlati

CVE-2024-32672 | Samsung Escargot 4.0.0 memory corruption

CVE-2024-36026 | Linux Kernel up to 6.1.86/6.6.27/6.8.6 MP1_UNLOAD denial of service

CVE-2022-44581 | WPMU Defender Security Plugin up to 3.3.2 on WordPress Temporary File sensitive information

CVE-2024-47944 | Rittal IoT Interface/CMC III Processing Unit prior 6.21.00.2 Firmware Upgrade missing protection mechanism for alternate hardware interface