CVE-2024-10844
CVE-2024-10844
6.9
MediumPublished:
Last updated:
Source:cna@vuldb.com
Analyzed
Weakness (CWE)
CVSS Vector
v4.0- Attack Vector
- Network
- Attack Complexity
- Low
- Attack Requirements
- None
- Privileges Required
- None
- User Interaction
- None
- Confidentiality (Vulnerable)
- Low
- Integrity (Vulnerable)
- Low
- Availability (Vulnerable)
- Low
- Confidentiality (Subsequent)
- None
- Integrity (Subsequent)
- None
- Availability (Subsequent)
- None
Description
A vulnerability, which was classified as critical, was found in 1000 Projects Bookstore Management System 1.0. This affects an unknown part of the file search.php. The manipulation of the argument s leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
References
cna@vuldb.com
https://github.com/sbm-98/CVE/issues/1cna@vuldb.com
https://vuldb.com/?ctiid.283089cna@vuldb.com
https://vuldb.com/?id.283089cna@vuldb.com
https://vuldb.com/?submit.436969