CVE-2024-5099 | SourceCodester Simple Inventory System 1.0 updateprice.php ITEM sql injection

Posted by Angelo Barbosa | May 18, 2024 | CVE

A vulnerability was found in SourceCodester Simple Inventory System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file updateprice.php. The manipulation of the argument ITEM leads to sql injection.

This vulnerability is handled as CVE-2024-5099. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-5099 | SourceCodester Simple Inventory System 1.0 updateprice.php ITEM sql injection

Related Posts

CVE-2024-36587 | DNSCrypt-proxy up to 2.1.5 permission

CVE-2023-39327 | OpenJPEG infinite loop

CVE-2024-47041 | Google Android kernel syscall.c valid_address out-of-bounds

MyPrestaModules ordersexport Module send.php sql injection