A vulnerability was found in itsourcecode Online Book Store 1.0. It has been rated as critical. This issue affects some unknown processing of the file admin_delete.php. The manipulation of the argument bookisbn leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-268721 was assigned to this vulnerability.
References
| Link | Resource |
|---|---|
| https://vuldb.com/?id.268721 | Third Party Advisory |
| https://vuldb.com/?ctiid.268721 | Permissions Required |
| https://vuldb.com/?submit.357075 | Issue Tracking |
| https://github.com/gabriel202212/cve/issues/1 | Exploit Technical Description Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
19 Jul 2024, 14:20
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:itsourcecode:online_book_store_project_in_php_and_mysql_with_source_code:1.0:*:*:*:*:*:*:* | |
| References | () https://vuldb.com/?submit.357075 - Issue Tracking | |
| References | () https://vuldb.com/?id.268721 - Third Party Advisory | |
| References | () https://vuldb.com/?ctiid.268721 - Permissions Required | |
| References | () https://github.com/gabriel202212/cve/issues/1 - Exploit, Technical Description, Third Party Advisory | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
| First Time |
Itsourcecode
Itsourcecode online Book Store Project In Php And Mysql With Source Code |
15 Jun 2024, 16:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-06-15 16:15
Updated : 2024-07-19 14:20
NVD link : CVE-2024-6013
Mitre link : CVE-2024-6013
JSON object : View
Products Affected
itsourcecode
- online_book_store_project_in_php_and_mysql_with_source_code
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')