CVE-2024-0496 | Kashipara Billing Software 1.0 HTTP POST Request item_list_edit.php id sql injection

Inserito da Angelo Barbosa | Gen 12, 2024 | CVE

A vulnerability was found in Kashipara Billing Software 1.0 and classified as critical. This issue affects some unknown processing of the file item_list_edit.php of the component HTTP POST Request Handler. The manipulation of the argument id leads to sql injection.

The identification of this vulnerability is CVE-2024-0496. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-0496 | Kashipara Billing Software 1.0 HTTP POST Request item_list_edit.php id sql injection

Post correlati

VDB-263596 | Campcodes Complete Web-Based School Management System 1.0 /view/show_events.php event_id cross site scripting

CVE-2024-44161 | Apple macOS up to 13.6/14.6 Texture out-of-bounds

CVE-2024-36837 | CRMEB 5.2.2 ProductController.php getProductList information disclosure

CVE-2024-24272 | iTop DualSafe Password Manager & Digital Vault up to 1.4.23 log file