NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-7446

Summary	A vulnerability, which was classified as critical, was found in itsourcecode Ticket Reservation System 1.0. This affects an unknown part of the file list_tickets.php. The manipulation of the argument prefSeat_id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-273531.
Publication Date	Aug. 4, 2024, 6:15 a.m.
Registration Date	Aug. 4, 2024, 10 a.m.
Last Update	Aug. 5, 2024, 9:41 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://vuldb.com/?id.273531
2	https://vuldb.com/?ctiid.273531
3	https://vuldb.com/?submit.383645
4	https://github.com/DeepMountains/Mirage/blob/main/CVE10-3.md

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-89	SQLインジェクション	https://cwe.mitre.org/data/definitions/89.html