CVE-2024-0734 | Smsot up to 2.12 /get.php tid sql injection

Inserito da Angelo Barbosa | Gen 19, 2024 | CVE

A vulnerability was found in Smsot up to 2.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /get.php. The manipulation of the argument tid leads to sql injection.

This vulnerability is known as CVE-2024-0734. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-0734 | Smsot up to 2.12 /get.php tid sql injection

Post correlati

Atlassian Crowd Data Center/Crowd Server Privilege Escalation

CVE-2024-6511 | y_project RuoYi up to 4.7.9 Content-Type isJsonRequest HttpHeaders.CONTENT_TYPE cross site scripting (IA8O7O)

CVE-2024-5173 | HT Mega Plugin up to 2.5.5 on WordPress Video Player Widget Setting cross site scripting

CVE-2024-41860 | Adobe Substance3D Sampler up to 4.5 out-of-bounds (apsb24-65)