CVE-2024-7635 | code-projects Simple Ticket Booking 1.0 Registration register_insert.php name/email/dob/password/Gender/phone sql injection

Inserito da Angelo Barbosa | Ago 9, 2024 | CVE

A vulnerability was found in code-projects Simple Ticket Booking 1.0. It has been classified as critical. Affected is an unknown function of the file register_insert.php of the component Registration Handler. The manipulation of the argument name/email/dob/password/Gender/phone leads to sql injection.

This vulnerability is traded as CVE-2024-7635. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-7635 | code-projects Simple Ticket Booking 1.0 Registration register_insert.php name/email/dob/password/Gender/phone sql injection

Post correlati

CVE-2023-40533 | Tinyproxy 1.11.1 HTTP Request uninitialized variable (TALOS-2023-1902)

CVE-2022-48578 | Apple macOS up to 12.4 AppleScript out-of-bounds (HT213345)

CVE-2024-3099 | MLflow up to 2.11.1 undefined behavior for input to api

CVE-2023-46837 | Xen 4.15.x/4.16.x/4.17.x ARM Helper information disclosure (XSA-447)