CVE-2024-10166 | Codezips Sales Management System 1.0 checkuser.php name sql injection

Posted by Angelo Barbosa | Oct 18, 2024 | CVE

A vulnerability was found in Codezips Sales Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file checkuser.php. The manipulation of the argument name leads to sql injection.

This vulnerability is handled as CVE-2024-10166. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-10166 | Codezips Sales Management System 1.0 checkuser.php name sql injection

Related Posts

CVE-2024-37278 | Pratik Chaskar Cards for Beaver Builder Plugin up to 1.1.4 on WordPress cross site scripting

CVE-2023-49721 | Canonical LXD on Linux UEFI Shell Local Privilege Escalation

CVE-2024-25111 | Squid Web Proxy up to 6.7.x HTTP Chunked Decoder recursion

CVE-2024-3027 | Smart Slider Plugin up to 3.5.1.22 on WordPress File Upload authorization