CVE-2024-9296 | SourceCodester Advocate Office Management System 1.0 /control/forgot_pass.php username sql injection

Inserito da Angelo Barbosa | Set 27, 2024 | CVE

A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /control/forgot_pass.php. The manipulation of the argument username leads to sql injection.

This vulnerability is traded as CVE-2024-9296. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-9296 | SourceCodester Advocate Office Management System 1.0 /control/forgot_pass.php username sql injection

Post correlati

CVE-2024-39482 | Linux Kernel up to 6.1.93/6.6.33/6.9.4 bcache btree_iter out-of-bounds

CVE-2024-3377 | SourceCodester Computer Laboratory Management System 1.0 SystemSettings.php name cross site scripting

CVE-2024-42657 | Nepstech NTPL-XPON1GFEVN 1.0 Login cleartext transmission

CVE-2024-23622 | IBM Merge Healthcare eFilm Workstation up to 4.2 stack-based overflow