CVE-2024-9808: SourceCodester Online Eyewear Shop sql injection
First published: Thu Oct 10 2024(Updated: )
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/?page=products/view_product. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SourceCodester Online Eyewear Shop | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-9808?
CVE-2024-9808 has been classified as a critical vulnerability.
How do I fix CVE-2024-9808?
To fix CVE-2024-9808, update SourceCodester Online Eyewear Shop to the latest version that addresses SQL injection vulnerabilities.
Which versions are affected by CVE-2024-9808?
CVE-2024-9808 affects SourceCodester Online Eyewear Shop version 1.0.
What type of vulnerability is CVE-2024-9808?
CVE-2024-9808 is a SQL injection vulnerability.
What are the potential impacts of exploiting CVE-2024-9808?
Exploiting CVE-2024-9808 could allow an attacker to manipulate the database and exfiltrate sensitive information.
- agent/weakness
- agent/title
- agent/references
- agent/type
- agent/description
- agent/first-publish-date
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/softwarecombine
- agent/trending
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/oretnom23
- canonical/sourcecodester online eyewear shop
- version/sourcecodester online eyewear shop/1.0