CVE-2024-10450 | SourceCodester Kortex Lite Advocate Office Management System 1.0 POST Parameter edit_profile.php id sql injection

Posted by Angelo Barbosa | Oct 28, 2024 | CVE

A vulnerability has been found in SourceCodester Kortex Lite Advocate Office Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /kortex_lite/control/edit_profile.php of the component POST Parameter Handler. The manipulation of the argument id leads to sql injection.

This vulnerability was named CVE-2024-10450. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-10450 | SourceCodester Kortex Lite Advocate Office Management System 1.0 POST Parameter edit_profile.php id sql injection

Related Posts

CVE-2024-8605 | code-projects Inventory Management 1.0 Registration Form /view/registration.php cross site scripting

CVE-2024-1119 | Order Tip for WooCommerce Plugin up to 1.3.1 on WordPress Data Export authorization

CVE-2024-26787 | Linux Kernel up to 5.10.212/5.15.151/6.1.80/6.6.20/6.7.8 kernel/dma/debug.c mmci_cmd_irq memory corruption

CVE-2024-33139 | J2EEFAST 2.7.0 findpage sql_filter sql injection