CVE-2024-0469 | code-projects Human Resource Integrated System 1.0 update_personal_info.php sex sql injection

Posted by Angelo Barbosa | Jan 12, 2024 | CVE

A vulnerability was found in code-projects Human Resource Integrated System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file update_personal_info.php. The manipulation of the argument sex leads to sql injection.

This vulnerability is handled as CVE-2024-0469. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-0469 | code-projects Human Resource Integrated System 1.0 update_personal_info.php sex sql injection

Related Posts

CVE-2024-4148 | lunary-ai lunary 1.2.10 redos

CVE-2022-40203 | AlgolPlus Advanced Dynamic Pricing for WooCommerce Plugin up to 4.1.5 on WordPress authorization

CVE-2024-2733 | Bold Page Builder Plugin up to 4.8.8 on WordPress Separator Element cross site scripting

CVE-2024-34069 | pallets werkzeug up to 3.0.2 cross-site request forgery (GHSA-2g68-c3qc-8985)