CVE-2024-10163 | SourceCodester Sentiment Based Movie Rating System 1.0 /msrps/movie_details.php id sql injection

Inserito da Angelo Barbosa | Ott 18, 2024 | CVE

A vulnerability was found in SourceCodester Sentiment Based Movie Rating System 1.0. It has been classified as critical. Affected is an unknown function of the file /msrps/movie_details.php. The manipulation of the argument id leads to sql injection.

This vulnerability is traded as CVE-2024-10163. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The initial researcher disclosure mentions a slightly changed product name.

CVE-2024-10163 | SourceCodester Sentiment Based Movie Rating System 1.0 /msrps/movie_details.php id sql injection

Post correlati

CVE-2023-4017 | Goya Plugin up to 1.0.8.7 on WordPress cross site scripting

CVE-2024-1160 | Bold Page Builder Plugin up to 4.8.0 on WordPress Icon Link cross site scripting

CVE-2024-31239 | Nudgify Social Proof, Sales Popup & FOMO Plugin up to 1.3.3 on WordPress cross-site request forgery

CVE-2024-5488 | SEOPress Plugin up to 7.8 on WordPress REST API Route deserialization