14Şub
CVE-2024-25210 | Simple Expense Tracker 1.0 delete_expense.php expense sql injection
A vulnerability was found in Simple Expense Tracker 1.0 and classified as critical. This issue affects some unknown processing of the file /endpoint/delete_expense.php. The manipulation of the argument expense leads to sql injection. The identification of this vulnerability is CVE-2024-25210. The attack needs to be done within the local network. There is no exploit available.