CVE-2024-4933 | SourceCodester Simple Online Bidding System 1.0 index.php id sql injection

Posted by Angelo Barbosa | May 15, 2024 | CVE

A vulnerability has been found in SourceCodester Simple Online Bidding System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /simple-online-bidding-system/admin/index.php?page=manage_product. The manipulation of the argument id leads to sql injection.

This vulnerability is known as CVE-2024-4933. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-4933 | SourceCodester Simple Online Bidding System 1.0 index.php id sql injection

Related Posts

CVE-2023-4925 | Easy Forms for Mailchimp Plugin up to 6.8.10 on WordPress Setting cross site scripting

CVE-2023-51520 | WPdevelop & Oplugins WP Booking Calendar Plugin up to 9.7.3 on WordPress cross site scripting

CVE-2024-36460 | Zabbix up to 5.0.42/6.0.30/6.4.15/7.0.0rc2 Front-end Audit Log credentials storage

CVE-2023-6566 | Microweber up to 1.x logic error