CVE-2024-46078 | itsourcecode Sports Management System 1.0 player.php delete_category id sql injection

Inserito da Angelo Barbosa | Ott 4, 2024 | CVE

A vulnerability, which was classified as critical, was found in itsourcecode Sports Management System 1.0. Affected is the function delete_category of the file sports_scheduling/player.php. The manipulation of the argument id leads to sql injection.

This vulnerability is traded as CVE-2024-46078. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-46078 | itsourcecode Sports Management System 1.0 player.php delete_category id sql injection

Post correlati

CVE-2024-9885 | Widget or Sidebar Shortcode Plugin up to 0.6.1 on WordPress cross site scripting

CVE-2023-51958 | Tenda AX1803 1.0.0.1 formGetIptv port stack-based overflow

CVE-2024-26311 | Archer Platform up to 6.14 P2 cross site scripting

CVE-2024-9540 | Sina Extension for Elementor Plugin up to 3.5.7 on WordPress Sina Modal Box Widget Elementor Template information disclosure