CVE-2024-8086 | SourceCodester E-Commerce System 1.0 Admin Login login.php user_email sql injection

Posted by Angelo Barbosa | Aug 22, 2024 | CVE

A vulnerability has been found in SourceCodester E-Commerce System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ecommerce/admin/login.php of the component Admin Login. The manipulation of the argument user_email leads to sql injection.

This vulnerability was named CVE-2024-8086. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-8086 | SourceCodester E-Commerce System 1.0 Admin Login login.php user_email sql injection

Related Posts

CVE-2023-34348 | AVEVA PI Server 2023/up to 2018 SP3 P05 unknown vulnerability (icsa-24-018-01)

CVE-2024-2040 | Himer Theme up to 2.1.0 on WordPress cross-site request forgery

CVE-2024-24962 | AutomationDirect Productivity 3000 P3-550E 1.2.10.9 Programming Software Connection FileSelect stack-based overflow (icsa-24-144-01)

CVE-2024-33470 | AVTECH Room Alert 4E 4.4.0 SMTP Email Setting missing encryption