CVE-2024-1926 | SourceCodester Free and Open Source Inventory Management System 1.0 search_sales_report.php customer sql injection

Posted by Angelo Barbosa | Feb 27, 2024 | CVE

A vulnerability was found in SourceCodester Free and Open Source Inventory Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /app/ajax/search_sales_report.php. The manipulation of the argument customer leads to sql injection.

The identification of this vulnerability is CVE-2024-1926. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-1926 | SourceCodester Free and Open Source Inventory Management System 1.0 search_sales_report.php customer sql injection

Related Posts

CVE-2024-3619 | SourceCodester Kortex Lite Advocate Office Management System 1.0 addcase_stage.php cname sql injection

CVE-2024-47641 | WPDeveloperr Confetti Fall Animation Plugin up to 1.3.0 on WordPress cross site scripting

CVE-2024-45185 | Samsung Mobile Processor/Wearable Processor/Modem Exynos GPRS Protocol out-of-bounds write

CVE-2024-30388 | Juniper Junos OS up to 22.4R2-S1 on QFX5000/EX Packet Forwarding Engine denial of service (JSA79089)