CVE-2024-12938 | code-projects Simple Admin Panel 1.0 updateOrderStatus.php record sql injection

Posted by Angelo Barbosa | Dec 25, 2024 | CVE

A vulnerability has been found in code-projects Simple Admin Panel 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file updateOrderStatus.php. The manipulation of the argument record leads to sql injection.

This vulnerability is known as CVE-2024-12938. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-12938 | code-projects Simple Admin Panel 1.0 updateOrderStatus.php record sql injection

Related Posts

CVE-2024-36179 | Adobe Experience Manager up to 6.5.20 cross site scripting (apsb24-28)

CVE-2024-9366 | Easy Menu Manager Plugin up to 1.0.1 on WordPress SVG File Upload cross site scripting

CVE-2024-36396 | Verint WFO prior 15.2.1030 unrestricted upload

CVE-2024-0552 | Intumit SmartRobot up to 6.0.0-202012tw Web Framework injection