CVE-2024-12792 | Codezips E-Commerce Site 1.0 newadmin.php email sql injection

Inserito da Angelo Barbosa | Dic 19, 2024 | CVE

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file newadmin.php. The manipulation of the argument email leads to sql injection.

This vulnerability is known as CVE-2024-12792. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-12792 | Codezips E-Commerce Site 1.0 newadmin.php email sql injection

Post correlati

CVE-2024-43745 | Adobe Experience Manager up to 6.5.21 cross site scripting (apsb24-69)

CVE-2024-28854 | tmccombs tls-listener up to 0.9.x TlsListener::new Slowloris resource consumption (GHSA-2qph-qpvm-2qf7)

CVE-2024-27019 | Linux Kernel up to 5.15.156/6.1.87/6.6.28/6.8.7/6.9-rc4 nf_tables __nft_obj_type_get race condition

CVE-2024-35778 | John West Slideshow SE Plugin up to 2.5.17 on WordPress path traversal