CVE-2024-40498 | PuneethReddyHC online-shopping-system-advanced 1.0 register.php address1 sql injection

Posted by Angelo Barbosa | Aug 5, 2024 | CVE

A vulnerability classified as critical was found in PuneethReddyHC online-shopping-system-advanced 1.0. Affected by this vulnerability is an unknown functionality of the file register.php. The manipulation of the argument address1 leads to sql injection.

This vulnerability is known as CVE-2024-40498. The attack can be launched remotely. There is no exploit available.

CVE-2024-40498 | PuneethReddyHC online-shopping-system-advanced 1.0 register.php address1 sql injection

Related Posts

CVE-2024-43255 | Stormhill Media MyBookTable Bookstore Plugin up to 3.3.9 on WordPress cross-site request forgery

CVE-2023-51673 | Designful Stylish Price List Plugin up to 7.0.17 on WordPress cross-site request forgery

CVE-2024-20440 | Cisco Smart License Utility 2.0.0/2.1.0/2.2.0 HTTP Request log file (cisco-sa-cslu-7gHMzWmw)

CVE-2024-3020 | shapedplugin Carousel, Slider, Gallery by WP Carousel Plugin up to 2.6.3 on WordPress shortcode deserialization