CVE-2024-13035 | code-projects Chat System 1.0 /admin/update_user.php id sql injection

Posted by Angelo Barbosa | Dec 29, 2024 | CVE

A vulnerability has been found in code-projects Chat System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/update_user.php. The manipulation of the argument id leads to sql injection.

This vulnerability was named CVE-2024-13035. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-13035 | code-projects Chat System 1.0 /admin/update_user.php id sql injection

Related Posts

CVE-2024-30594 | Tenda FH1202 1.2.0.14(408) /goform/addWifiMacFilter deviceMac stack-based overflow

CVE-2023-41987 | Apple macOS Printing Privilege Escalation

CVE-2024-50624 | KDE Kmail up to 6.1.x ispdbservice.cpp channel accessible

CVE-2023-41612 | Victure PC420 1.1.39 Micro SD Card enabled_telnet.dat inadequate encryption