CVE-2024-8710

A vulnerability classified as critical was found in code-projects Inventory

Publication date: 2024-09-12

Last updated on: 2024-09-13

Description

A vulnerability classified as critical was found in code-projects Inventory Management 1.0. Affected by this vulnerability is an unknown functionality of the file modelviewProduct.php of the component Products Table Page. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

CVSS Scores

Affected Vendors & Products

Currently, no data is known.

Helpful Resources

Third Party Advisory, VDB Entry
Permissions Required
Third Party Advisory, VDB Entry
Exploit, Third Party Advisory
Product

Exploitability

CWE ID	Description
CWE-89	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Ask Our AI Assistant

Need more information? Ask your question to get an AI reply (Powered by our expertise)

0/70

Meta Information

Date published:

2024-09-12

Date last modified:

2024-09-13

Date generated:

2025-01-15

NVD report:

CVE-2024-8710