Vulnerability — CVE-2024-1926

CVE-2024-1926

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2024-1926
Description:: A vulnerability was found in SourceCodester Free and Open Source Inventory Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /app/ajax/search_sales_report.php. The manipulation of the argument customer leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-254861 was assigned to this vulnerability.
Last updated date:: 12/18/2024

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/18/2024
Reference url to background: https://github.com/xiahao90/CVEproject/blob/main/xiahao.webray.com.cn/Free%20and%20Open%20Source%20inventory%20management%20system-SQLi.md