CVE-2024-8949 - SourceCodester Online Eyewear Shop Remote File Inclusion Vulnerability

2 months ago 29
ARTICLE AD BOX
CVE ID : CVE-2024-8949
Published : Sept. 17, 2024, 7:15 p.m. | 24 minutes ago
Description : A vulnerability classified as critical has been found in SourceCodester Online Eyewear Shop 1.0. This affects an unknown part of the file /classes/Master.php of the component Cart Content Handler. The manipulation of the argument cart_id/id leads to improper ownership management. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article