CVE-2024-6970 | itsourcecode Tailoring Management System 1.0 /staffcatadd.php title sql injection

Inserito da Angelo Barbosa | Lug 21, 2024 | CVE

A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file /staffcatadd.php. The manipulation of the argument title leads to sql injection.

This vulnerability is traded as CVE-2024-6970. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-6970 | itsourcecode Tailoring Management System 1.0 /staffcatadd.php title sql injection

Post correlati

CVE-2024-38324 | IBM Storage Defender up to 2.0.7 Resiliency Service certificate validation

CVE-2024-8747 | Email Obfuscate Shortcode Plugin up to 2.0 on WordPress cross site scripting

CVE-2024-22256 | VMware Cloud Director 10.4.x/10.5.x Organization Name information disclosure (VMSA-2024-0007)

CVE-2024-5662 | bdthemes Ultimate Post Kit Addons for Elementor Plugin up to 3.11.7 on WordPress url cross site scripting