CVE-2024-10136 | code-projects Pharmacy Management System 1.0 /manage_invoice.php invoice_number sql injection

Posted by Angelo Barbosa | Oct 18, 2024 | CVE

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /manage_invoice.php. The manipulation of the argument invoice_number leads to sql injection.

This vulnerability was named CVE-2024-10136. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-10136 | code-projects Pharmacy Management System 1.0 /manage_invoice.php invoice_number sql injection

Related Posts

CVE-2024-9816 | Codezips Tourist Management System 1.0 /admin/change-image.php packageimage unrestricted upload

VDB-261675 | Backdoor.Win32.Dumador.c FTP Server stack-based overflow

CVE-2024-3885 | Premium Addons for Elementor Plugin up to 4.10.28 on WordPress cross site scripting

CVE-2022-45850 | Nickys Image Map Pro Plugin up to 5.6.8 on WordPress cross-site request forgery