CVE-2024-8380 | SourceCodester Contact Manager with Export to VCF 1.0 Delete Contact delete-account.php contact sql injection

Inserito da Angelo Barbosa | Set 2, 2024 | CVE

A vulnerability was found in SourceCodester Contact Manager with Export to VCF 1.0. It has been rated as critical. This issue affects some unknown processing of the file /endpoint/delete-account.php of the component Delete Contact Handler. The manipulation of the argument contact leads to sql injection.

The identification of this vulnerability is CVE-2024-8380. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-8380 | SourceCodester Contact Manager with Export to VCF 1.0 Delete Contact delete-account.php contact sql injection

Post correlati

CVE-2023-43279 | tcpreplay 4.4.4 Tcprewrite cidr.c mask_cidr6 null pointer dereference (Issue 824)

CVE-2024-0195 | spider-flow 0.4.3 FunctionController.java FunctionService.saveFunction code injection

CVE-2023-50902 | WPExpertsio New User Approve Plugin up to 2.5.1 on WordPress cross-site request forgery

CVE-2023-25642 | ZTE MC801A/MC801A1 TCP Port buffer overflow