CVE-2024-3015 | SourceCodester Simple Subscription Website 1.0 manage_plan.php id sql injection

Posted by Angelo Barbosa | Mar 27, 2024 | CVE

A vulnerability classified as critical was found in SourceCodester Simple Subscription Website 1.0. Affected by this vulnerability is an unknown functionality of the file manage_plan.php. The manipulation of the argument id leads to sql injection.

This vulnerability is known as CVE-2024-3015. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-3015 | SourceCodester Simple Subscription Website 1.0 manage_plan.php id sql injection

Related Posts

CVE-2024-29930 | CurrencyRate Crypto Converter Widget Plugin up to 1.8.4 on WordPress cross site scripting

CVE-2024-41859 | Adobe After Effects up to 23.6.6/24.5 out-of-bounds write (apsb24-55)

CVE-2024-7279 | SourceCodester Lot Reservation Management System 1.0 ajax.php username sql injection

CVE-2024-29131 | Apache Commons Configuration up to 2.10.0 out-of-bounds write