CVE-2024-4931 | SourceCodester Simple Online Bidding System 1.0 index.php id sql injection

Posted by Angelo Barbosa | May 15, 2024 | CVE

A vulnerability, which was classified as critical, has been found in SourceCodester Simple Online Bidding System 1.0. This issue affects some unknown processing of the file /simple-online-bidding-system/admin/index.php?page=view_udet. The manipulation of the argument id leads to sql injection.

The identification of this vulnerability is CVE-2024-4931. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-4931 | SourceCodester Simple Online Bidding System 1.0 index.php id sql injection

Related Posts

CVE-2024-8170 | SourceCodester Zipped Folder Manager App 1.0 /endpoint/add-folder.php folder unrestricted upload

CVE-2024-0268 | Kashipara Hospital Management System up to 1.0 registration.php name/email/pass/gender/age/city sql injection

CVE-2024-6540 | OTRS up to 8.0.x/2023.x/2024.4.x Ticket improper filtering of special elements

CVE-2024-4201 | GitLab up to 16.10.6/16.11.3/17.0.1 XML File cross site scripting (Issue 458229)