CVE-2024-2418 | SourceCodester Best POS Management System 1.0 /view_order.php id sql injection

Inserito da Angelo Barbosa | Mar 13, 2024 | CVE

A vulnerability was found in SourceCodester Best POS Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /view_order.php. The manipulation of the argument id leads to sql injection.

This vulnerability is known as CVE-2024-2418. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-2418 | SourceCodester Best POS Management System 1.0 /view_order.php id sql injection

Post correlati

CVE-2024-41032 | Linux Kernel up to 6.6.40/6.9.9 vmalloc addr_to_vb_xa Privilege Escalation (28acd531c9a3/47f9b6e49b42/a34acf30b19b)

CVE-2024-27257 | IBM OpenPages 8.3/9.0 sensitive information in source

CVE-2023-46932 | GPAC 2.3-DEV-rev617-g671976fcc-master MP4Box src/media_tools/avilib.c denial of service

CVE-2024-4564 | CoDesigner WooCommerce Builder for Elementor Plugin cross site scripting