21Mar
CVE-2024-29871 | Sentrifugo 3.2 updatecontactnumber id sql injection
A vulnerability classified as critical was found in Sentrifugo 3.2. Affected by this vulnerability is an unknown functionality of the file /sentrifugo/index.php/index/getdepartments/sentrifugo/index.php/index/updatecontactnumber. The manipulation of the argument id leads to sql injection. This vulnerability is known as CVE-2024-29871. The attack can be launched remotely. There is no exploit available.