CVE-2024-50802 | AbanteCart 1.4.0 email_templates.php update id sql injection

Inserito da Angelo Barbosa | Ott 31, 2024 | CVE

A vulnerability has been found in AbanteCart 1.4.0 and classified as critical. This vulnerability affects the function update of the file public_html/admin/controller/responses/listing_grid/email_templates.php. The manipulation of the argument id leads to sql injection.

This vulnerability was named CVE-2024-50802. The attack can be initiated remotely. There is no exploit available.

CVE-2024-50802 | AbanteCart 1.4.0 email_templates.php update id sql injection

Post correlati

CVE-2024-4960 | D-Link DAR-7000-40 V31R02B1413C licenseauthorization.php file_upload unrestricted upload (SAP10354)

CVE-2024-4196 | Avaya IP Office up to 11.1.3.0 Web Control input validation

CVE-2023-1083 | Welotec TK515L prior 2.3.0.r5542 MQTT Topic Name access control (VDE-2024-009)

CVE-2024-37985 | ARM CPU information disclosure