CVE-2024-6830 | SourceCodester Simple Inventory Management System 1.0 Order action.php order_id sql injection

Inserito da Angelo Barbosa | Lug 17, 2024 | CVE

A vulnerability, which was classified as critical, was found in SourceCodester Simple Inventory Management System 1.0. Affected is an unknown function of the file action.php of the component Order Handler. The manipulation of the argument order_id leads to sql injection.

This vulnerability is traded as CVE-2024-6830. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-6830 | SourceCodester Simple Inventory Management System 1.0 Order action.php order_id sql injection

Post correlati

CVE-2024-22667 | vim up to 9.0.2141 map.c did_set_langmap stack-based overflow

CVE-2024-38314 | IBM Maximo Application Suite 8.10/8.11/9.0 Monitor hard-coded key

CVE-2024-32602 | OnTheGoSystems WooCommerce Multilingual & Multicurrency Plugin up to 5.3.3.1 on WordPress sql injection

CVE-2023-33109 | Qualcomm QCA667 WMI P2P Listen Start Command denial of service