CVE-2019-25159 | mpedraza2020 Intranet del Monterroso up to 4.50.0 config/cargos.php dni_profe sql injection

Inserito da Angelo Barbosa | Feb 2, 2024 | CVE

A vulnerability was found in mpedraza2020 Intranet del Monterroso up to 4.50.0. It has been classified as critical. This affects an unknown part of the file config/cargos.php. The manipulation of the argument dni_profe leads to sql injection.

This vulnerability is uniquely identified as CVE-2019-25159. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2019-25159 | mpedraza2020 Intranet del Monterroso up to 4.50.0 config/cargos.php dni_profe sql injection

Post correlati

CVE-2024-4580 | Master Addons Plugin up to 2.0.6.0 on WordPress cross site scripting

CVE-2024-32848 | Ivanti EPM 2024/up to 2022 SU5 sql injection

CVE-2023-6526 | Meta Box Plugin up to 5.9.2 on WordPress cross site scripting

CVE-2023-32888 | MediaTek MT6990 Modem IMS Call UA denial of service (MOLY01161830)