CVE-2024-6009 | itsourcecode Event Calendar 1.0 process.php regConfirm/regDelete userId sql injection

CVE-2024-6009 | itsourcecode Event Calendar 1.0 process.php regConfirm/regDelete userId sql injection

A vulnerability has been found in itsourcecode Event Calendar 1.0 and classified as critical. Affected by this vulnerability is the function regConfirm/regDelete of the file process.php. The manipulation of the argument userId leads to sql injection. This vulnerability is known as CVE-2024-6009. The attack can be launched remotely. Furthermore, there is an exploit available.