CVE-2024-3003 | code-projects Online Book System 1.0 /cart.php quantity/remove sql injection

Inserito da Angelo Barbosa | Mar 27, 2024 | CVE

A vulnerability has been found in code-projects Online Book System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /cart.php. The manipulation of the argument quantity/remove leads to sql injection.

This vulnerability is known as CVE-2024-3003. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-3003 | code-projects Online Book System 1.0 /cart.php quantity/remove sql injection

Post correlati

CVE-2024-3258 | SourceCodester Internship Portal Management System 1.0 admin/add_activity.php title/description/start/end sql injection

CVE-2024-36845 | libmodbus 3.1.6 Message modbus_receive denial of service

CVE-2024-23930 | Pioneer DMH-WT7600NEX Media Service denial of service (ZDI-24-1043)

CVE-2024-49701 | Theme Horse Mags Plugin up to 1.1.6 on WordPress filename control