CVE-2024-7498 | itsourcecode Airline Reservation System 1.0 Admin Login Page /admin/login.php login/login2 username sql injection

Inserito da Angelo Barbosa | Ago 5, 2024 | CVE

A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been classified as critical. Affected is the function login/login2 of the file /admin/login.php of the component Admin Login Page. The manipulation of the argument username leads to sql injection.

This vulnerability is traded as CVE-2024-7498. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-7498 | itsourcecode Airline Reservation System 1.0 Admin Login Page /admin/login.php login/login2 username sql injection

Post correlati

CVE-2024-0917 | paddle code injection

CVE-2024-28795 | IBM InfoSphere Information Server 11.7 Web UI cross site scripting (XFDB-286832)

CVE-2024-40641 | projectdiscovery nuclei up to 3.3.0 os command injection

CVE-2023-50848 | Aaron J 404 Solution Plugin up to 2.34.0 on WordPress sql injection