CVE-2024-8345 | SourceCodester Music Gallery Site 1.0 Users.php id sql injection

Inserito da Angelo Barbosa | Ago 30, 2024 | CVE

A vulnerability was found in SourceCodester Music Gallery Site 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /classes/Users.php?f=delete. The manipulation of the argument id leads to sql injection.

This vulnerability is handled as CVE-2024-8345. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-8345 | SourceCodester Music Gallery Site 1.0 Users.php id sql injection

Post correlati

CVE-2024-3512 | gn_themes WP Shortcodes Plugin up to 7.0.4 on WordPress Shortcode note_color cross site scripting

CVE-2024-40478 | Kashipara Online Exam System 1.0 /admin/afeedback.php email cross site scripting

CVE-2023-49098 | discourse-reactions Notifications access control (2c26939)

CVE-2023-6551 | class.upload.php unrestricted upload