CVE-2024-8561 | SourceCodester PHP CRUD 1.0 Delete Person /endpoint/delete.php person sql injection

Inserito da Angelo Barbosa | Set 6, 2024 | CVE

A vulnerability has been found in SourceCodester PHP CRUD 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /endpoint/delete.php of the component Delete Person Handler. The manipulation of the argument person leads to sql injection.

This vulnerability is known as CVE-2024-8561. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-8561 | SourceCodester PHP CRUD 1.0 Delete Person /endpoint/delete.php person sql injection

Post correlati

CVE-2024-31907 | IBM Planning Analytics Local 2.0/2.1 Web UI cross site scripting (XFDB-289889)

CVE-2024-21504 | livewire up to 3.4.8 URL Property cross site scripting

CVE-2024-26897 | Linux Kernel up to 6.8.1 wifi ath9k_wmi_event_tasklet null pointer dereference

CVE-2024-34760 | WPBlockart Magazine Blocks Plugin up to 1.3.6 on WordPress cross site scripting