CVE-2024-12792 – Codezips E-Commerce Site SQL Injection Vulnerability

12月 19, 2024
7:17 pm

CVE ID : CVE-2024-12792

Published : Dec. 19, 2024, 6:15 p.m. | 1 hour, 1 minute ago

Description : A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file newadmin.php. The manipulation of the argument email leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-12792 – Codezips E-Commerce Site SQL Injection Vulnerability

Elvescore.io

Recent Posts

CVE-2024-12883 – Code-projects Job Recruitment Cross Site Scripting

CVE-2024-12875 – Easy Digital Downloads WordPress Directory Traversal Vulnerability

CVE-2024-10453 – Elementor Website Builder Stored Cross-Site Scripting Vulnerability

CVE-2024-11688 – WordPress LaTeX2HTML Reflected Cross-Site Scripting

CVE-2024-11722 – WordPress DynamiApps Frontend Admin SQL Injection

CVE-2024-12408 – “Amazon Web Services (AWS) WordPress Reflected Cross-Site Scripting (XSS)”

CVE-2024-12792 – Codezips E-Commerce Site SQL Injection Vulnerability

CVE-2024-12792 – Codezips E-Commerce Site SQL Injection Vulnerability