CVE Published: 19/10/2024 |
CVE Updated: 21/10/2024 |
CVE Year: 2024 Source: VulDB |
Vendor: code-projects |
Product: Pharmacy Management System Status : PUBLISHED
CVE-2024-10136 Description
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /manage_invoice.php. The manipulation of the argument invoice_number leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.