CVE-2024-12884

CVSS V2 None CVSS V3 None
Description
A vulnerability was found in Codezips E-Commerce Website 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Overview
  • CVE ID
  • CVE-2024-12884
  • Assigner
  • VulDB
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-12-21T14:00:09.828Z
  • Last Modified Date
  • 2024-12-21T14:00:09.828Z
References
Reference URL Reference Tags
https://vuldb.com/?id.289142 vdb-entry technical-description
https://vuldb.com/?ctiid.289142 signature permissions-required
https://vuldb.com/?submit.466519 third-party-advisory
https://geochen.medium.com/sqli-in-login-php-of-e-commerce-website-using-php-1abacb5e2ccd exploit
History
Created Old Value New Value Data Type Notes
2024-12-22 13:11:24 Added to TrackCVE