CVE-2024-11258 | 1000 Projects Beauty Parlour Management System 1.0 /admin/index.php username sql injection

Inserito da Angelo Barbosa | Nov 15, 2024 | CVE

A vulnerability classified as critical was found in 1000 Projects Beauty Parlour Management System 1.0. This vulnerability affects unknown code of the file /admin/index.php. The manipulation of the argument username leads to sql injection.

This vulnerability was named CVE-2024-11258. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-11258 | 1000 Projects Beauty Parlour Management System 1.0 /admin/index.php username sql injection

Post correlati

CVE-2024-9560 | ESAFENET CDG V5 Catelogs;logindojojs delCatelogs id sql injection

CVE-2023-33758 | SpliceCom Maximiser Soft PBX up to 1.5 Login CLIENT_NAME/DEVICE_GUID cross site scripting

CVE-2024-43454 | Microsoft

CVE-2024-42010 | RoundCube up to 1.5.7/1.6.7 Cascading Style Sheet mod_css_styles information disclosure