CVE-2024-0735 | SourceCodester Online Tours & Travels Management System 1.0 expense.php exec sql injection

Inserito da Angelo Barbosa | Gen 19, 2024 | CVE

A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. Affected by this issue is the function exec of the file admin/operations/expense.php. The manipulation leads to sql injection.

This vulnerability is handled as CVE-2024-0735. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-0735 | SourceCodester Online Tours & Travels Management System 1.0 expense.php exec sql injection

Post correlati

CVE-2024-28537 | Tenda AC18 15.03.05.05 fromNatStaticSetting page stack-based overflow

CVE-2024-24681 | Yealink Configuration Encrypt Tool hard-coded key

CVE-2024-7116 | MD-MAFUJUL-HASAN Online-Payroll-Management-System up to 20230911 /branch_viewmore.php id sql injection

CVE-2023-49180 | Ternstyle Automatic Youtube Video Posts Plugin up to 5.2.2 on WordPress cross site scripting