CVE-2024-7219 | SourceCodester School Log Management System 1.0 ajax.php username sql injection

Inserito da Angelo Barbosa | Lug 29, 2024 | CVE

A vulnerability classified as critical has been found in SourceCodester School Log Management System 1.0. Affected is an unknown function of the file /admin/ajax.php?action=login. The manipulation of the argument username leads to sql injection.

This vulnerability is traded as CVE-2024-7219. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-7219 | SourceCodester School Log Management System 1.0 ajax.php username sql injection

Post correlati

CVE-2024-45595 | man-group dtale up to 3.14.0 cross site scripting (GHSA-pw44-4h99-wqff)

CVE-2023-28616 | Stormshield Network Security Services up to 4.3.16/4.6.3/4.7.0 Syslog missing encryption

CVE-2024-0708 | Landing Page Cat Plugin up to 1.7.2 on WordPress improper authentication

CVE-2021-47469 | Linux Kernel up to 5.14.14 spi_add_lock deadlock (722ef19a161c/6098475d4cb4)