CVE-2024-3000 | code-projects Online Book System 1.0 /index.php username/password/login_username/login_password sql injection

Inserito da Angelo Barbosa | Mar 27, 2024 | CVE

A vulnerability classified as critical was found in code-projects Online Book System 1.0. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument username/password/login_username/login_password leads to sql injection.

This vulnerability was named CVE-2024-3000. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-3000 | code-projects Online Book System 1.0 /index.php username/password/login_username/login_password sql injection

Post correlati

CVE-2024-2410 | protocolbuffers protobuf up to 4.24.x JsonToBinaryStream use after free

CVE-2023-6737 | Enable Media Replace Plugin up to 4.1.4 on WordPress cross site scripting

CVE-2024-37429 | Hamid Alinia Login with Phone Number Plugin up to 1.7.35 on WordPress cross site scripting

CVE-2024-2061 | SourceCodester Petrol Pump Management Software 1.0 /admin/edit_supplier.php id sql injection