Security Advisory

CVE-2024-12961

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-12-26 18:00:14
Last updated 2024-12-26 18:39:08
Assigner VulDB
State PUBLISHED

Description

A vulnerability, which was classified as critical, was found in 1000 Projects Portfolio Management System MCA 1.0. Affected is an unknown function of the file /update_ach_details.php. The manipulation of the argument q leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.