CVE-2024-10021 | code-projects Pharmacy Management System 1.0 text sql injection

Inserito da Angelo Barbosa | Ott 16, 2024 | CVE

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /php/manage_purchase.php?action=search&tag=VOUCHER_NUMBER. The manipulation of the argument text leads to sql injection.

This vulnerability is handled as CVE-2024-10021. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-10021 | code-projects Pharmacy Management System 1.0 text sql injection

Post correlati

CVE-2024-1361 | Colibri Page Builder Plugin up to 1.0.253 on WordPress extend_builder cross-site request forgery

CVE-2024-47768 | Lif-Platforms Lif-Auth-Server up to 1.7.2 improper authentication (GHSA-hmv6-8fg8-7m6f)

CVE-2024-3349 | SourceCodester Aplaya Beach Resort Online Reservation System 1.0 admin/login.php email sql injection

CVE-2021-47124 | Linux Kernel up to 5.10.54/5.12.18 io_uring lib/refcount.c io_link_timeout_fn Privilege Escalation