CVE-2024-8709 | SourceCodester Best House Rental Management System 1.0 /admin_class.php delete_user/save_user id sql injection

Inserito da Angelo Barbosa | Set 11, 2024 | CVE

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. Affected is the function delete_user/save_user of the file /admin_class.php. The manipulation of the argument id leads to sql injection.

This vulnerability is traded as CVE-2024-8709. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-8709 | SourceCodester Best House Rental Management System 1.0 /admin_class.php delete_user/save_user id sql injection

Post correlati

CVE-2021-46901 | CETIC 6LBR 1.5.0 Long URL httpd.c stack-based overflow (Issue 414)

CVE-2023-5993 | Thales SafeNet Authentication Client up to 10.8 R9 on Windows privileges management

CVE-2023-40549 | rhboot shim shim.c verify_buffer_authenticode out-of-bounds

CVE-2024-7373 | SourceCodester Simple Realtime Quiz System 1.0 ajax.php id sql injection