CVE-2024-8868: code-projects Crud Operation System savedata.php sql injection
First published: Sun Sep 15 2024(Updated: )
A vulnerability was found in code-projects Crud Operation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file savedata.php. The manipulation of the argument sname leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| code-projects Crud Operation System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-8868?
CVE-2024-8868 has been rated as a critical vulnerability.
What does CVE-2024-8868 affect?
CVE-2024-8868 affects Crud Operation System version 1.0, specifically the file savedata.php.
What type of vulnerability is CVE-2024-8868?
CVE-2024-8868 is an SQL injection vulnerability.
How can CVE-2024-8868 be exploited?
CVE-2024-8868 can be exploited remotely through the manipulation of the argument sname.
How do I fix CVE-2024-8868?
To fix CVE-2024-8868, ensure proper sanitization of user input in the savedata.php file.
- agent/weakness
- agent/title
- agent/references
- agent/type
- agent/description
- agent/first-publish-date
- agent/author
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/severity
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/event
- agent/trending
- agent/tags
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/source
- vendor/code-projects
- canonical/code-projects crud operation system
- version/code-projects crud operation system/1.0