CVE-2024-0477

Name of the Vulnerable Software and Affected Versions code-projects Fighting Cock Information System version 1.0

Description A critical issue has been found in the code-projects Fighting Cock Information System, affecting unknown code of the file /admin/action/update-deworm.php. The manipulation of the usage deworm argument leads to SQL injection. The attack can be initiated remotely.

Recommendations For version 1.0, consider disabling the /admin/action/update-deworm.php file or restricting access to it until a patch is available. Avoid using the usage deworm argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.