CVE-2024-48231 | Funadmin 5.0.2 Auth.php index selectFields sql injection (Issue 29)

Inserito da Angelo Barbosa | Ott 21, 2024 | CVE

A vulnerability classified as critical has been found in Funadmin 5.0.2. This affects the function index of the file backendcontrollerauthAuth.php. The manipulation of the argument selectFields leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-48231. The attack needs to be initiated within the local network. There is no exploit available.

CVE-2024-48231 | Funadmin 5.0.2 Auth.php index selectFields sql injection (Issue 29)

Post correlati

CVE-2024-7914 | SourceCodester Yoga Class Registration System 1.0 SystemSettings.php address cross site scripting

CVE-2024-44729 | MiroTalk app/src/server.js access control (9de226)

CVE-2024-33688 | Extend Themes Teluro Plugin up to 1.0.31 on WordPress cross-site request forgery

CVE-2024-5475 | Responsive Video Embed Plugin up to 0.5.0 on WordPress Shortcode cross site scripting