CVE-2024-12894 | TreasureHuntGame TreasureHunt up to 963e0e0 TreasureHunt/acesso.php usuario sql injection

A vulnerability, which was classified as critical, was found in TreasureHuntGame TreasureHunt up to 963e0e0. Affected is an unknown function of the file TreasureHunt/acesso.php. The manipulation of the argument usuario leads to sql injection.

This vulnerability is traded as CVE-2024-12894. It is possible to launch the attack remotely. There is no exploit available.

This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. It is recommended to apply a patch to fix this issue.

CVE-2024-12894 | TreasureHuntGame TreasureHunt up to 963e0e0 TreasureHunt/acesso.php usuario sql injection

Related Posts

CVE-2022-0402 | Super Forms Plugin up to 6.0.3 on WordPress AJAX Action bob_czy_panstwa_sprawa_zostala_rozwiazana cross site scripting

CVE-2024-26219 | Microsoft unknown vulnerability

CVE-2024-9581 | Shortcodes AnyWhere Plugin up to 1.0.1 on WordPress Shortcode Remote Code Execution

CVE-2023-43472 | MLFlow up to 2.8.1 REST API information disclosure