CVE-2024-7164 | SourceCodester School Fees Payment System 1.0 /ajax.php username sql injection

Inserito da Angelo Barbosa | Lug 27, 2024 | CVE

A vulnerability has been found in SourceCodester School Fees Payment System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=login. The manipulation of the argument username leads to sql injection.

This vulnerability was named CVE-2024-7164. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-7164 | SourceCodester School Fees Payment System 1.0 /ajax.php username sql injection

Post correlati

CVE-2024-37265 | Martin Gibson IdeaPush Plugin up to 8.60 on WordPress cross site scripting

CVE-2024-31879 | IBM i 7.2/7.3/7.4 Network Port denial of service (XFDB-287539)

CVE-2023-40276 | OpenClinic 5.247.01 pharmacy/exportFile.jsp information disclosure

CVE-2024-4334 | Supreme Modules Lite Plugin up to 2.5.3 on WordPress cross site scripting