A vulnerability classified as critical was found in 1000...
Moderate severity
Unreviewed
Published
Nov 27, 2024
to the GitHub Advisory Database
•
Updated Dec 3, 2024
Description
Published by the National Vulnerability Database
Nov 27, 2024
Published to the GitHub Advisory Database
Nov 27, 2024
Last updated
Dec 3, 2024
A vulnerability classified as critical was found in 1000 Projects Portfolio Management System MCA 1.0. This vulnerability affects unknown code of the file /forgot_password_process.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
References