CVE-2024-13002 – “1000 Projects Bookstore Management System SQL Injection”

12月 29, 2024
5:16 am

CVE ID : CVE-2024-13002

Published : Dec. 29, 2024, 4:15 a.m. | 1 hour, 1 minute ago

Description : A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /order_process.php. The manipulation of the argument fnm leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13002 – “1000 Projects Bookstore Management System SQL Injection”

Elvescore.io

Recent Posts

CVE-2024-13058 – SoftIron HyperCloud Elevated User Privilege sdStorage Subsystem Vuln

CVE-2024-11944 – iXsystems TrueNAS CORE Tarfile Directory Traversal Remote Code Execution Vulnerability

CVE-2024-11946 – iXsystems TrueNAS CORE fetch_plugin_packagesites Tar Transmission Vulnerability

CVE-2024-12751 – Foxit PDF Reader AcroForm Buffer Overflow Remote Code Execution

CVE-2024-12752 – Foxit PDF Reader AcroForm Remote Code Execution Vulnerability

CVE-2024-12753 – Foxit PDF Reader Link Following Local Privilege Escalation Vulnerability

CVE-2024-13002 – “1000 Projects Bookstore Management System SQL Injection”

CVE-2024-13002 – “1000 Projects Bookstore Management System SQL Injection”