Raffle Draw System v1.0 was discovered to contain multiple SQL injection vulnerabilities at save_winner.php via the ticket_id and draw parameters.
References
Link | Resource |
---|---|
https://github.com/xiumulty/CVE/blob/main/Raffle%20draw%20system%20v1.0/sql%20in%20save_winner.md | Exploit Third Party Advisory |
https://www.sourcecodester.com/php/15951/raffle-draw-system-using-php-and-javascript-free-source-code.html | Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-02-06T00:00:00
Updated: 2023-02-06T00:00:00
Reserved: 2023-01-23T00:00:00
Link: CVE-2023-24198
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-02-06T15:15:10.827
Modified: 2023-10-18T15:28:51.693
Link: CVE-2023-24198
JSON object: View
Redhat Information
No data.
CWE