CVE-2024-7811 – SourceCodester Daily Expenses Monitoring App delete-expense.php sql injection

https://notcve.org/view.php?id=CVE-2024-7811

A vulnerability classified as critical has been found in SourceCodester Daily Expenses Monitoring App 1.0. This affects an unknown part of the file /endpoint/delete-expense.php. The manipulation of the argument expense leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/Peanut886/Vulnerability/blob/main/webray.com.cn/2024/daily%20expenses%20monitoring%20app%20-%20delete-expense.php%20sql%20injection%20vulnerability.md https://vuldb.com/?ctiid.274707 https://vuldb.com/?id.274707 https://vuldb.com/?submit.390947 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •