CVE-2024-10349 | SourceCodester Best House Rental Management System 1.0 ajax.php?action=delete_tenant id sql injection

Inserito da Angelo Barbosa | Ott 24, 2024 | CVE

A vulnerability was found in SourceCodester Best House Rental Management System 1.0 and classified as critical. Affected by this issue is the function delete_tenant of the file /ajax.php?action=delete_tenant. The manipulation of the argument id leads to sql injection.

This vulnerability is handled as CVE-2024-10349. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-10349 | SourceCodester Best House Rental Management System 1.0 ajax.php?action=delete_tenant id sql injection

Post correlati

CVE-2024-47771 | Element Desktop up to 1.11.80 information disclosure (GHSA-963w-49j9-gxj6)

CVE-2024-42768 | Kashipara Hotel Management System 1.0 /admin/delete_room.php cross-site request forgery

CVE-2024-9274 | Elastik Page Builder Plugin up to 0.27.4 on WordPress SVG File Upload cross site scripting

VDB-260028 | unknown vulnerability