CVE-2024-11819 | 1000 Projects Portfolio Management System MCA 1.0 forgot_password_process.php username sql injection

Inserito da Angelo Barbosa | Nov 26, 2024 | CVE

A vulnerability classified as critical was found in 1000 Projects Portfolio Management System MCA 1.0. This vulnerability affects unknown code of the file /forgot_password_process.php. The manipulation of the argument username leads to sql injection.

This vulnerability was named CVE-2024-11819. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-11819 | 1000 Projects Portfolio Management System MCA 1.0 forgot_password_process.php username sql injection

Post correlati

CVE-2023-52214 | voidCoders Void Contact Form 7 Widget for Elementor Page Builder Plugin authorization

CVE-2021-39090 | IBM Cloud Pak for Security up to 1.10.6.0 missing encryption (XFDB-216388)

CVE-2024-27311 | Zoho ManageEngine DDI Central up to 4001 unrestricted upload

CVE-2023-28077 | Dell BSAFE SSL-J up to 6.4/7.0 debug messages revealing unnecessary information (dsa-2023-156)