CVE-2024-33957 | Janobe E-Negosyo System 1.0 controller.php id sql injection

Inserito da Angelo Barbosa | Ago 6, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Janobe E-Negosyo System 1.0. This issue affects some unknown processing of the file /admin/orders/controller.php. The manipulation of the argument id leads to sql injection.

The identification of this vulnerability is CVE-2024-33957. The attack may be initiated remotely. There is no exploit available.

CVE-2024-33957 | Janobe E-Negosyo System 1.0 controller.php id sql injection

Post correlati

CVE-2023-52462 | Linux Kernel up to 5.10.208/5.15.147/6.1.74/6.6.13/6.7.1 BPF is_spilled_reg stack-based overflow

CVE-2024-25617 | Squid Web Proxy up to 6.4 HTTP Header Parser resource consumption (GHSA-h5x6-w8mv-xfpr)

CVE-2024-2413 | Intumit SmartRobot up to 6.1.2-202212tw hard-coded key

CVE-2023-39329 | OpenJPEG tcd.c opj_t1_decode_cblks resource consumption