CVE-2024-11592 | 1000 Projects Beauty Parlour Management System 1.0 /admin/about-us.php pagetitle sql injection

Posted by Angelo Barbosa | Nov 21, 2024 | CVE

A vulnerability has been found in 1000 Projects Beauty Parlour Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/about-us.php. The manipulation of the argument pagetitle leads to sql injection.

This vulnerability was named CVE-2024-11592. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-11592 | 1000 Projects Beauty Parlour Management System 1.0 /admin/about-us.php pagetitle sql injection

Related Posts

CVE-2024-7917 | DouPHP 1.7 Release 20220822 Favicon /admin/system.php site_favicon unrestricted upload

CVE-2024-3728 | wpdevteam Essential Addons for Elementor Plugin up to 5.9.15 on WordPress Filterable Gallery / Interactive Circle Widgets cross site scripting (ID 3075644)

CVE-2024-5835 | Google Chrome prior 126.0.6478.54 Tab Groups heap-based overflow (ID 341991)

CVE-2024-28187 | inunosinsi soycms up to 3.14.1 jpegoptim os command injection (GHSA-qg3q-hfgc-5jmm)