CVE-2024-5428 | SourceCodester Simple Online Bidding System 1.0 HTTP POST Request index.php save_product cross-site request forgery

Inserito da Angelo Barbosa | Mag 28, 2024 | CVE

A vulnerability classified as problematic was found in SourceCodester Simple Online Bidding System 1.0. Affected by this vulnerability is the function save_product of the file /admin/index.php?page=manage_product of the component HTTP POST Request Handler. The manipulation leads to cross-site request forgery.

This vulnerability is known as CVE-2024-5428. The attack can be launched remotely. There is no exploit available.

CVE-2024-5428 | SourceCodester Simple Online Bidding System 1.0 HTTP POST Request index.php save_product cross-site request forgery

Post correlati

CVE-2023-48886 | NettyRpc 1.2 RPC Request deserialization (Issue 53)

CVE-2024-3600 | Poll Maker Plugin up to 5.1.8 on WordPress cross site scripting

CVE-2024-22141 | Profile Builder Pro Plugin up to 3.10.0 on WordPress One-Time Password information disclosure

CVE-2023-50722 | XWiki Platform Admin Section cross site scripting (GHSA-cp3j-273x-3jxc)