A vulnerability was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. It has been classified as critical. This affects an unknown part of the file /control/register_case.php. The manipulation of the argument title/case_no/client_name/court/case_type/case_stage/legel_acts/description/filling_date/hearing_date/opposite_lawyer/total_fees/unpaid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-260277 was assigned to this vulnerability.
References
Configurations
No configuration.
History
11 Apr 2024, 12:47
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
11 Apr 2024, 04:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-11 04:15
Updated : 2024-04-11 12:47
NVD link : CVE-2024-3621
Mitre link : CVE-2024-3621
CVE.ORG link : CVE-2024-3621
JSON object : View
Products Affected
No product.
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')