CVE-2024-4931 | SourceCodester Simple Online Bidding System 1.0 index.php id sql injection

Posted by Angelo Barbosa | May 15, 2024 | CVE

A vulnerability, which was classified as critical, has been found in SourceCodester Simple Online Bidding System 1.0. This issue affects some unknown processing of the file /simple-online-bidding-system/admin/index.php?page=view_udet. The manipulation of the argument id leads to sql injection.

The identification of this vulnerability is CVE-2024-4931. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-4931 | SourceCodester Simple Online Bidding System 1.0 index.php id sql injection

Related Posts

CVE-2024-3376 | SourceCodester Computer Laboratory Management System 1.0 config.php url redirect

CVE-2024-1574 | Mitsubishi Electric ICONICS/AlarmWorX Multimedia/MobileHMI unknown vulnerability (icsa-24-184-03)

CVE-2024-42849 | Silverpeas up to 6.4.2 Password Change denial of service

CVE-2024-47049 | czim file-handling package up to 1.4.x/2.2.x makeFromUrl/makeFromAny server-side request forgery