CVE-2024-4972 | code-projects Simple Chat System 1.0 /login.php email/password sql injection

Posted by Angelo Barbosa | May 15, 2024 | CVE

A vulnerability classified as critical has been found in code-projects Simple Chat System 1.0. This affects an unknown part of the file /login.php. The manipulation of the argument email/password leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-4972. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-4972 | code-projects Simple Chat System 1.0 /login.php email/password sql injection

Related Posts

CVE-2023-41703 | Open-Xchange OX App Suite up to 7.10.6-rev9/8.19 User ID Reference cross site scripting

CVE-2024-0300 | Beijing Baichuo Smart S150 Management Platform up to 20240101 HTTP POST Request userattestation.php web_img unrestricted upload

CVE-2024-2556 | SourceCodester Employee Task Management System 1.0 attendance-info.php user_id sql injection

CVE-2024-44095 | Google Android code/drm_fw.c ppmp_protect_mfcfw_buf memory corruption