SQL Injection Vulnerability in code-projects Simple Admin Panel
CVE-2024-12936
5.3MEDIUM
What is CVE-2024-12936?
A vulnerability has been identified in the Simple Admin Panel version 1.0 from code-projects, specifically within the file catDeleteController.php. This vulnerability allows for SQL injection by manipulating the argument 'record'. An attacker can exploit this flaw to execute arbitrary SQL code, which can lead to unauthorized access to the database or other malicious outcomes. This exploit can be initiated remotely, making it particularly concerning for those utilizing this software. Organizations are urged to implement immediate security measures to mitigate potential risks.
Affected Version(s)
Simple Admin Panel 1.0