CVE-2024-51327 [CRITICAL] :

SQL Injection in loginform.php in ProjectWorld's Travel Management System v1.0 allows remote attackers to bypass authentication via SQL Injection in the 'username' and 'password' fields.

Elastic Security Lab

research
threat

Elastic Security Labs empowers security teams across the globe with novel security intelligence research and free to use tools.

Visit Website

Listed: Thu Dec 21 2023