CVE-2024-7949 | SourceCodester Online Graduate Tracer System up to 1.0 fetch_genderit.php request sql injection

Posted by Angelo Barbosa | Aug 19, 2024 | CVE

A vulnerability, which was classified as critical, was found in SourceCodester Online Graduate Tracer System up to 1.0. Affected is an unknown function of the file /tracking/admin/fetch_genderit.php. The manipulation of the argument request leads to sql injection.

This vulnerability is traded as CVE-2024-7949. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-7949 | SourceCodester Online Graduate Tracer System up to 1.0 fetch_genderit.php request sql injection

Related Posts

CVE-2024-7715 | D-Link DNS-1550-04 up to 20240812 photocenter_mgr.cgi sprintf filter command injection (SAP10383)

CVE-2024-28188 | Jupyter Scheduler prior 1.1.6/1.2.1/1.8.2/2.5.2 Conda Environment information disclosure (GHSA-v9g2-g7j4-4jxc)

CVE-2024-44558 | Tenda AX1806 1.0.0.1 setIptvInfo adv.iptv.stbpvid stack-based overflow

CVE-2024-22562 | SWFTools 0.9.2 swftools/lib/q.c dict_foreach_keyvalue stack-based overflow