CVE-2024-4929 | SourceCodester Simple Online Bidding System 1.0 ajax.php cross-site request forgery

Posted by Angelo Barbosa | May 15, 2024 | CVE

A vulnerability classified as problematic has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file /simple-online-bidding-system/admin/ajax.php?action=save_user. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2024-4929. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-4929 | SourceCodester Simple Online Bidding System 1.0 ajax.php cross-site request forgery

Related Posts

CVE-2024-33575 | User Meta user-meta Plugin up to 3.0 on WordPress information disclosure

CVE-2023-1577 | Lenovo Driver Manager prior 3.1.1307.1308 input validation

CVE-2023-6545 | Beckhoff TwinCAT BSD prior 4.37.5 authelia-bhf redirect (VDE-2023-067)

CVE-2024-1956 | WP-FeedStats wpb-show-core Plugin up to 2.6 on WordPress the cross site scripting