CVE-2024-8086 | SourceCodester E-Commerce System 1.0 Admin Login login.php user_email sql injection

Posted by Angelo Barbosa | Aug 22, 2024 | CVE

A vulnerability has been found in SourceCodester E-Commerce System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ecommerce/admin/login.php of the component Admin Login. The manipulation of the argument user_email leads to sql injection.

This vulnerability was named CVE-2024-8086. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-8086 | SourceCodester E-Commerce System 1.0 Admin Login login.php user_email sql injection

Related Posts

CVE-2024-5685 | snipe-it up to 6.4.1 API authorization

CVE-2024-10609 | itsourcecode Tailoring Management System Project 1.0 typeadd.php sex sql injection

CVE-2024-45456 | JoomUnited WP Meta SEO Plugin up to 4.5.13 on WordPress cross site scripting

CVE-2024-36250 | Mattermost up to 9.5.10/9.11.2 MFA incorrect implementation of authentication algorithm