CVE-2024-10432 | Project Worlds Simple Web-Based Chat Application 1.0 /index.php username sql injection

Inserito da Angelo Barbosa | Ott 27, 2024 | CVE

A vulnerability has been found in Project Worlds Simple Web-Based Chat Application 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument username leads to sql injection.

This vulnerability is known as CVE-2024-10432. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-10432 | Project Worlds Simple Web-Based Chat Application 1.0 /index.php username sql injection

Post correlati

CVE-2024-48043 | ShortPixel Image Optimizer Plugin up to 5.6.3 on WordPress sql injection

CVE-2022-39997 | Teldats RS123/RS123w weak password

CVE-2023-40673 | Cartpauj Register Captcha Plugin up to 1.0.02 on WordPress improper control of interaction frequency

CVE-2024-7605 | HelloAsso Plugin up to 1.1.10 on WordPress Options Update authorization