CVE-2024-6906 | SourceCodester Record Management System 1.0 add_leave_non_user.php LSS sql injection

Inserito da Angelo Barbosa | Lug 18, 2024 | CVE

A vulnerability was found in SourceCodester Record Management System 1.0 and classified as critical. This issue affects some unknown processing of the file add_leave_non_user.php. The manipulation of the argument LSS leads to sql injection.

The identification of this vulnerability is CVE-2024-6906. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-6906 | SourceCodester Record Management System 1.0 add_leave_non_user.php LSS sql injection

Post correlati

CVE-2024-35874 | Linux Kernel up to 6.8.4 aio_complete null pointer dereference (9678bcc6234d/caeb4b0a11b3)

CVE-2024-42062 | Apache CloudStack up to 4.18.2.2/4.19.1.0 User Key information disclosure

CVE-2024-28752 | Apache CXF up to 3.5.7/3.6.2/4.0.3 Aegis Databinding server-side request forgery

CVE-2024-20271 | Cisco Aironet Access Point IPv4 Packet denial of service (cisco-sa-ap-dos-h9TGGX6W)