CVE-2024-9326 | PHPGurukul Online Shopping Portal 2.0 Admin Panel index.php username sql injection

Posted by Angelo Barbosa | Sep 28, 2024 | CVE

A vulnerability classified as critical was found in PHPGurukul Online Shopping Portal 2.0. This vulnerability affects unknown code of the file /shopping/admin/index.php of the component Admin Panel. The manipulation of the argument username leads to sql injection.

This vulnerability was named CVE-2024-9326. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-9326 | PHPGurukul Online Shopping Portal 2.0 Admin Panel index.php username sql injection

Related Posts

CVE-2023-48824 | BoidCMS 2.0.1 title/subtitle/footer/keywords cross site scripting (ID 176031)

CVE-2024-2920 | WP-Members Membership Plugin up to 3.4.9.3 on WordPress information disclosure

CVE-2024-9314 | Rank Math SEO Plugin up to 1.0.228 on WordPress code injection

CVE-2024-2144 | Ultimate Addons for Beaver Builder Plugin up to 1.5.7 on WordPress Image Separator Widget cross site scripting