CVE-2024-7643 | SourceCodester Leads Manager Tool 1.0 Delete Leads delete-leads.php leads sql injection

Inserito da Angelo Barbosa | Ago 9, 2024 | CVE

A vulnerability was found in SourceCodester Leads Manager Tool 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /endpoint/delete-leads.php of the component Delete Leads Handler. The manipulation of the argument leads leads to sql injection.

This vulnerability is handled as CVE-2024-7643. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-7643 | SourceCodester Leads Manager Tool 1.0 Delete Leads delete-leads.php leads sql injection

Post correlati

CVE-2024-6407 | Schneider Electric Wiser Home Controller WHC-5918A Message information disclosure (SEVD-2024-191-01)

CVE-2024-39907 | 1Panel 1.10.9-tls/1.10.10-tls/1.10.11-tls sql injection (GHSA-5grx-v727-qmq6)

CVE-2023-42504 | Apache Superset up to 2.x Concurrent Request allocation of resources

CVE-2024-8497 | Franklin Fueling Systems TS-550 EVO Automatic Tank Gauge prior 2.26.4.8967 absolute path traversal (icsa-24-268-03)