CVE-2024-7498 | itsourcecode Airline Reservation System 1.0 Admin Login Page /admin/login.php login/login2 username sql injection

Inserito da Angelo Barbosa | Ago 5, 2024 | CVE

A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been classified as critical. Affected is the function login/login2 of the file /admin/login.php of the component Admin Login Page. The manipulation of the argument username leads to sql injection.

This vulnerability is traded as CVE-2024-7498. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-7498 | itsourcecode Airline Reservation System 1.0 Admin Login Page /admin/login.php login/login2 username sql injection

Post correlati

CVE-2024-8915 | Category Icon Plugin up to 1.0.0 on WordPress SVG File Upload cross site scripting

CVE-2024-21900 | QNAP QTS/QuTS hero/QuTScloud injection (qsa-24-09)

CVE-2024-30310 | Adobe Acrobat Reader up to 20.005.30574/24.002.20736 out-of-bounds write (apsb24-29)

CVE-2024-28698 | Marimer CSLA .Net up to 7.x MobileFormatter path traversal