CVE-2024-1926 | SourceCodester Free and Open Source Inventory Management System 1.0 search_sales_report.php customer sql injection

Posted by Angelo Barbosa | Feb 27, 2024 | CVE

A vulnerability was found in SourceCodester Free and Open Source Inventory Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /app/ajax/search_sales_report.php. The manipulation of the argument customer leads to sql injection.

The identification of this vulnerability is CVE-2024-1926. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-1926 | SourceCodester Free and Open Source Inventory Management System 1.0 search_sales_report.php customer sql injection

Related Posts

CVE-2024-34577 | Elecom WRC-X3000GS2-B/WRC-X3000GS2-W/WRC-X3000GS2A-B up to 1.08 easysetup.cgi cross site scripting

CVE-2024-1349 | EmbedPress Plugin up to 3.9.8 on WordPress Shortcode cross site scripting

CVE-2024-48769 | BURG-WCHTER de.burgwachter.keyapp.app 4.5.0 Firmware Update information disclosure

CVE-2024-9546 | WPIDE Plugin up to 3.4.9 on WordPress information disclosure