CVE-2024-41618 | Money Manager EX WebApp 1.2.2 transaction_delete_group TrDeleteArr sql injection (Issue 51)

Inserito da Angelo Barbosa | Ott 25, 2024 | CVE

A vulnerability was found in Money Manager EX WebApp 1.2.2. It has been classified as critical. This affects the function transaction_delete_group. The manipulation of the argument TrDeleteArr leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-41618. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-41618 | Money Manager EX WebApp 1.2.2 transaction_delete_group TrDeleteArr sql injection (Issue 51)

Post correlati

CVE-2024-5229 | Primary Addon for Elementor Plugin up to 1.5.5 on WordPress Pricing Table Widget cross site scripting

CVE-2024-7511 | Trimble SketchUp Pro prior 24.0.553 SKP File Parser out-of-bounds (ZDI-24-1057)

CVE-2024-31813 | Totolink EX200 4.0.3c.7646_B20201211 missing authentication

CVE-2024-48597 | Online Clinic Management System 1.0 editp.php?action=edit id sql injection