Vulnerability Description
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been classified as critical. This affects an unknown part of the file templateadd.php. The manipulation of the argument title/msg leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-271455.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Angeljudesuarez | Tailoring Management System | 1.0 |
Related Weaknesses (CWE)
References
- https://github.com/jiaoyanshuai/cve/issues/2Exploit
- https://vuldb.com/?ctiid.271455Permissions Required
- https://vuldb.com/?id.271455Third Party Advisory
- https://vuldb.com/?submit.374464Third Party Advisory
- https://github.com/jiaoyanshuai/cve/issues/2Exploit
- https://vuldb.com/?ctiid.271455Permissions Required
- https://vuldb.com/?id.271455Third Party Advisory
- https://vuldb.com/?submit.374464Third Party Advisory
FAQ
What is CVE-2024-6734?
CVE-2024-6734 is a vulnerability with a CVSS score of 6.3 (MEDIUM). A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been classified as critical. This affects an unknown part of the file templateadd.php. The manipulation of the argumen...
How severe is CVE-2024-6734?
CVE-2024-6734 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-6734?
Check the references section above for vendor advisories and patch information. Affected products include: Angeljudesuarez Tailoring Management System.