CVE-2024-8220 | itsourcecode Tailoring Management System 1.0 staffedit.php id/stafftype/address/fullname/phonenumber/salary sql injection

Posted by Angelo Barbosa | Aug 27, 2024 | CVE

A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file staffedit.php. The manipulation of the argument id/stafftype/address/fullname/phonenumber/salary leads to sql injection.

This vulnerability is known as CVE-2024-8220. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-8220 | itsourcecode Tailoring Management System 1.0 staffedit.php id/stafftype/address/fullname/phonenumber/salary sql injection

Related Posts

CVE-2024-6737 | 2100 Technology Electronic Official Document Management System up to 5.0.76 Setting access control

CVE-2024-9713 | Trimble SketchUp Pro SKP File Parser use after free (ZDI-24-1474)

CVE-2024-45240 | TikTok App up to 34.5.4 on Android Lynxview JavaScript Interface

CVE-2024-7537 | oFono 1.34 QMI SMS out-of-bounds (ZDI-24-1077)