CVE-2024-12484 | Codezips Technical Discussion Forum 1.0 /signuppost.php Username sql injection

Posted by Angelo Barbosa | Dec 11, 2024 | CVE

A vulnerability classified as critical was found in Codezips Technical Discussion Forum 1.0. This vulnerability affects unknown code of the file /signuppost.php. The manipulation of the argument Username leads to sql injection.

This vulnerability was named CVE-2024-12484. The attack can be initiated remotely. Furthermore, there is an exploit available.

Other parameters might be affected as well.

CVE-2024-12484 | Codezips Technical Discussion Forum 1.0 /signuppost.php Username sql injection

Related Posts

CVE-2024-31175 | Open Networking Foundation libfluid 0.1.0 unpack unchecked return value to null pointer dereference

CVE-2024-44117 | SAP NetWeaver Application Server for ABAP and ABAP Platform RFC Enabled Function Module authorization

CVE-2024-0151 | ARM v8-M Security Extensions Requirements on Development Tools unexpected data type

CVE-2024-45232 | Powermail EExtension up to 12.3.5 on TYPO3 confirmationAction resource injection