CVE-2024-1829 | code-projects Library System 1.0 registration.php email/regno/phone/username sql injection

Inserito da Angelo Barbosa | Feb 23, 2024 | CVE

A vulnerability was found in code-projects Library System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file Source/librarian/user/student/registration.php. The manipulation of the argument email/regno/phone/username leads to sql injection.

This vulnerability is known as CVE-2024-1829. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-1829 | code-projects Library System 1.0 registration.php email/regno/phone/username sql injection

Post correlati

CVE-2024-38582 | Linux Kernel up to 6.9.2 nilfs2 nilfs_detach_log_writer deadlock

CVE-2024-38277 | Moodle up to 4.1.10/4.2.7/4.3.4/4.4 QR Login Key a key past its expiration date

CVE-2024-37080 | VMware vCenter Server/Cloud Foundation DCERPC heap-based overflow

CVE-2024-3948 | SourceCodester Home Clean Service System 1.0 Photo adminstudent.add.php unrestricted upload