CVE-2024-12785 | itsourcecode Vehicle Management System 1.0 sendmail.php id sql injection

Posted by Angelo Barbosa | Dec 19, 2024 | CVE

A vulnerability was found in itsourcecode Vehicle Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file sendmail.php. The manipulation of the argument id leads to sql injection.

This vulnerability is known as CVE-2024-12785. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-12785 | itsourcecode Vehicle Management System 1.0 sendmail.php id sql injection

Related Posts

CVE-2024-7693 | Team Johnlong Raiden MAILD Remote Management System up to 5.01 path traversal

CVE-2024-26654 | Linux Kernel up to 6.9-rc1 ALSA del_timer null pointer dereference (051e0840ffa8)

CVE-2023-5770 | Proofpoint Enterprise Protection up to 8.18.6/8.20.0/8.20.2 Email Subject inappropriate encoding for output context

CVE-2024-27280 | StringIO 3.0.1/3.0.2 ungetbyte/ungetc buffer overflow