CVE-2024-10447 | Project Worlds Online Time Table Generator 1.0 staffdashboard.php?info=updateprofile n sql injection

Inserito da Angelo Barbosa | Ott 28, 2024 | CVE

A vulnerability classified as critical was found in Project Worlds Online Time Table Generator 1.0. Affected by this vulnerability is an unknown functionality of the file /timetable/staff/staffdashboard.php?info=updateprofile. The manipulation of the argument n leads to sql injection.

This vulnerability is known as CVE-2024-10447. The attack can be launched remotely. There is no exploit available.

CVE-2024-10447 | Project Worlds Online Time Table Generator 1.0 staffdashboard.php?info=updateprofile n sql injection

Post correlati

CVE-2024-7013 | Panasonic Control FPWIN Pro up to 7.7.2.0 Project File stack-based overflow

CVE-2024-37007 | Autodesk AutoCAD/Advance Steel and Civil 3D 2024 X_B File pskernel.DLL use after free

CVE-2024-41706 | Archer Trusted Application Data Store cross site scripting

CVE-2024-0207 | Wireshark 4.2.0 HTTP3 Dissector out-of-bounds