CVE-2024-12943 | CodeAstro House Rental Management System 1.0 /ownersignup.php f/e/p/m/o/n/c/s/ci/a sql injection

A vulnerability was found in CodeAstro House Rental Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /ownersignup.php. The manipulation of the argument f/e/p/m/o/n/c/s/ci/a leads to sql injection.

This vulnerability is known as CVE-2024-12943. The attack can be launched remotely. Furthermore, there is an exploit available.

The initial researcher advisory only mentions the parameter “m” to be affected. But it must be assumed that many other parameters are affected as well.

CVE-2024-12943 | CodeAstro House Rental Management System 1.0 /ownersignup.php f/e/p/m/o/n/c/s/ci/a sql injection

Post correlati

CVE-2023-45362: MediaWiki DifferenceEngine.php information disclosure

CVE-2024-48936 | SchedMD Slurm up to 23.11.1 stepmgr improper authorization

CVE-2024-27620 | Ladder up to 0.0.21 API information disclosure

CVE-2024-31756 | MarvinTest Solutions Hardware Access Driver up to 5.0.3.0 Hw65.sys Local Privilege Escalation