CVE-2024-24496

An issue in Daily Habit Tracker v.1.0 allows a remote attacker to manipulate trackers via the home.php, add-tracker.php, delete-tracker.php, update-tracker.php components...

CVE-2024-24495

SQL Injection vulnerability in delete-tracker.php in Daily Habit Tracker v.1.0 allows a remote attacker to execute arbitrary code via crafted GET request...

CVE-2024-24495

CVE-2024-24495 is a SQL injection vulnerability affecting Daily Habit Tracker version 1.0, arising from the delete-tracker.php endpoint. Remote attackers can craft a GET request to trigger arbitrary code execution due to insecure handling of input in the targeted PHP file. The Red Hat advisory co...