CVE-2024-10422 | SourceCodester Attendance and Payroll System 1.0 /admin/overtime_add.php id sql injection

Inserito da Angelo Barbosa | Ott 26, 2024 | CVE

A vulnerability, which was classified as critical, has been found in SourceCodester Attendance and Payroll System 1.0. This issue affects some unknown processing of the file /admin/overtime_add.php. The manipulation of the argument id leads to sql injection.

The identification of this vulnerability is CVE-2024-10422. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-10422 | SourceCodester Attendance and Payroll System 1.0 /admin/overtime_add.php id sql injection

Post correlati

CVE-2024-33211 | Tenda FH1206 1.2.0.8(8155)_EN ip/goform/QuickIndex PPPOEPassword stack-based overflow

CVE-2024-28891 | Delta Electronics DIAEnergie up to 1.10.00.4 Handler_CFG.ashx sql injection (icsa-24-074-12)

CVE-2024-2435 | Temporal OSS ui-server up to 2.24.x cross site scripting

CVE-2024-36736 | Oneflow 0.9.1 oneflow.permute Privilege Escalation