A vulnerability classified as critical was found in SourceCodester Best Online News Portal 1.0. This vulnerability affects unknown code of the file /news-details.php of the component Comment Section. The manipulation of the argument name leads to sql injection.
This vulnerability was named CVE-2024-9008. The attack can be initiated remotely. Furthermore, there is an exploit available.