CVE-2024-11250 | code-projects Inventory Management up to 1.0 /model/editProduct.php id sql injection

Posted by Angelo Barbosa | Nov 15, 2024 | CVE

A vulnerability was found in code-projects Inventory Management up to 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /model/editProduct.php. The manipulation of the argument id leads to sql injection.

This vulnerability was named CVE-2024-11250. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-11250 | code-projects Inventory Management up to 1.0 /model/editProduct.php id sql injection

Related Posts

CVE-2024-5577 | Where I Was, Where I Will Be Plugin up to 1.1.1 on WordPress file inclusion

CVE-2024-39475 | Linux Kernel up to 6.9.4 fbdev savagefb_probe divide by zero

CVE-2024-27417 | Linux Kernel up to 6.7.8 ipv6 inet6_rtm_getaddr memory leak

CVE-2024-24050 | SourceCodester Workout Journal App 1.0 /add-user.php firstname/lastname cross site scripting