CVE-2024-42783

2024-08-2100:00:00

mitre

www.cve.org

sql injection

kashipara music management system

manage_playlist_items.php

cve-2024-42783

EPSS

0.001

Percentile

43.9%

JSON

Kashipara Music Management System v1.0 is vulnerable to SQL Injection via /music/manage_playlist_items.php. An attacker can execute arbitrary SQL commands via the “pid” parameter.

References

github.com/takekaramey/CVE_Writeup/blob/main/Kashipara/Music%20Management%20System%20v1.0/SQL%20Injection%20-%20Manage%20Playlist.pdf

www.kashipara.com/project/php/12978/music-management-system-in-php-php-project-source-code

EPSS

0.001

Percentile

43.9%

JSON

Related for CVELIST:CVE-2024-42783