CVE-2024-40392 | SourceCodester Pharmacy Medical Store Point of Sale System 1.0 addnew.php name sql injection

Posted by Angelo Barbosa | Jul 16, 2024 | CVE

A vulnerability was found in SourceCodester Pharmacy Medical Store Point of Sale System 1.0. It has been classified as critical. Affected is an unknown function of the file addnew.php. The manipulation of the argument name leads to sql injection.

This vulnerability is traded as CVE-2024-40392. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-40392 | SourceCodester Pharmacy Medical Store Point of Sale System 1.0 addnew.php name sql injection

Related Posts

CVE-2023-49108 | Sumitomo Electric Information Systems RakRak Document Plus up to 6.4.0.7 path traversal

CVE-2024-30290 | Adobe Framemaker up to 2020.5/2022.3 out-of-bounds write (apsb24-37)

CVE-2024-31615 | ThinkCMF 6.0.9 UeditorController.php unrestricted upload

CVE-2024-37126 | Dell PowerScale OneFS up to 9.7.0.0/9.7.0.2/9.7.0.3/9.8.0.0 privileges management (dsa-2024-255)