CVE-2024-9293 | skyselang yylAdmin up to 3.0 Backend File.php list is_disable sql injection

CVE-2024-9293 | skyselang yylAdmin up to 3.0 Backend File.php list is_disable sql injection

A vulnerability classified as critical was found in skyselang yylAdmin up to 3.0. Affected by this vulnerability is the function list of the file /app/admin/controller/file/File.php of the component Backend. The manipulation of the argument is_disable leads to sql injection. This vulnerability is known as CVE-2024-9293. The attack can be launched remotely. Furthermore, there is an exploit available.