CVE-2024-7936 | itsourcecode Project Expense Monitoring System 1.0 transferred_report.php start/end/employee sql injection

Posted by Angelo Barbosa | Aug 19, 2024 | CVE

A vulnerability classified as critical has been found in itsourcecode Project Expense Monitoring System 1.0. This affects an unknown part of the file transferred_report.php. The manipulation of the argument start/end/employee leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-7936. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-7936 | itsourcecode Project Expense Monitoring System 1.0 transferred_report.php start/end/employee sql injection

Related Posts

CVE-2024-1050 | Import and Export Users and Customers Plugin up to 1.26.5 on WordPress authorization

CVE-2024-1605 | BMC Control-M prior 9.0.20.238/9.0.21.201 DLL access control

CVE-2024-0128 | NVIDIA vGPU/Cloud Gaming prior 16.8/17.4 Virtual GPU Manager permission assignment

CVE-2024-25080 | Axigen prior 10.3.3.62 WebMail cross site scripting