CVE-2024-6471 | SourceCodester Online Tours & Travels Management 1.0 sms_setting.php uname sql injection

Inserito da Angelo Barbosa | Lug 3, 2024 | CVE

A vulnerability classified as critical has been found in SourceCodester Online Tours & Travels Management 1.0. This affects an unknown part of the file sms_setting.php. The manipulation of the argument uname leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-6471. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-6471 | SourceCodester Online Tours & Travels Management 1.0 sms_setting.php uname sql injection

Post correlati

CVE-2023-50732 | XWiki xwiki-platform-index-tree-macro authorization

CVE-2024-4747 | Propovoice CRM Plugin up to 1.7.6.2 on WordPress cross site scripting

CVE-2023-52604 | Linux Kernel up to 6.7.3 UBSAN fs/jfs/jfs_dmap.c denial of service

CVE-2024-9591 | Category and Taxonomy Image Plugin up to 1.0.0 on WordPress cross site scripting