CVE-2024-13024 | Codezips Blood Bank Management System 1.0 /campaign.php cname sql injection

Posted by Angelo Barbosa | Dec 28, 2024 | CVE

A vulnerability was found in Codezips Blood Bank Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /campaign.php. The manipulation of the argument cname leads to sql injection.

The identification of this vulnerability is CVE-2024-13024. The attack may be initiated remotely. Furthermore, there is an exploit available.

Other parameters might be affected as well.

CVE-2024-13024 | Codezips Blood Bank Management System 1.0 /campaign.php cname sql injection

Related Posts

CVE-2023-28895 | Škoda Superb III 2020 Power Controller Chip hard-coded password

CVE-2024-2006 | wpwax Post Grid, Slider & Carousel Ultimate Plugin up to 1.6.7 on WordPress outpost_shortcode_metabox_markup deserialization

CVE-2024-40117 | Solar-Log 1000 prior 2.8.2 Web Administration Server access control

CVE-2024-3745 | MSI Afterburner 4.6.6.16381 Beta 3 RTCore64.sys authorization