CVE-2024-30938 | SEMCMS 4.8 SEMCMS_User.php ID sql injection

Inserito da Angelo Barbosa | Apr 19, 2024 | CVE

A vulnerability, which was classified as critical, has been found in SEMCMS 4.8. Affected by this issue is some unknown functionality of the file SEMCMS_User.php. The manipulation of the argument ID leads to sql injection.

This vulnerability is handled as CVE-2024-30938. The attack may be launched remotely. There is no exploit available.

CVE-2024-30938 | SEMCMS 4.8 SEMCMS_User.php ID sql injection

Post correlati

CVE-2024-22453 | Dell PowerEdge Platform prior 1.19.0/2.14.0/2.19.0 BIOS heap-based overflow (dsa-2024-105)

CVE-2024-36779 | SourceCodester Stock Management System 1.0 editCategories.php sql injection (Issue 42)

CVE-2023-50294 | WESEEK GROWI up to 6.0.5 App Settings Page /admin/app cleartext storage

CVE-2024-2429 | Salon Booking System Plugin up to 9.6.5 on WordPress Setting cross-site request forgery