CVE-2024-55509
9.8CRITICALSQL injection vulnerability in CodeAstro Complaint Management System v.1.0 allows a remote attacker to execute arbitrary code and escalate privileges via the id parameter of the delete.php component.
Published: 12/20/2024Updated: 4/3/2025
Description
SQL injection vulnerability in CodeAstro Complaint Management System v.1.0 allows a remote attacker to execute arbitrary code and escalate privileges via the id parameter of the delete.php component.
AI AnalysisPowered by AI
Affected Products
codeastrocomplaint_management_system
1.0
References
- https://github.com/prithivilakshmanan/CSV/blob/main/CVE-2024-55509.mdExploitThird Party Advisory
- https://github.com/prithivilakshmanan/CSV/blob/main/CVE-2024-55509.mdExploitThird Party Advisory