SQL Injection Vulnerability in Code-Projects Simple Admin Panel
CVE-2024-12938
5.3MEDIUM
What is CVE-2024-12938?
A significant security flaw has been identified in the Simple Admin Panel version 1.0, specifically affecting the functionality of the file updateOrderStatus.php. This vulnerability arises from improper handling of the 'record' argument, which allows for SQL injection attacks. These attacks can be executed remotely, posing a serious risk to the compromised system's data integrity. Public disclosure of the exploit raises concerns about potential attacks. Organizations utilizing this software should take immediate action to safeguard their systems against possible exploitation.
Affected Version(s)
Simple Admin Panel 1.0