CVE-2024-0482

Name of the Vulnerable Software and Affected Versions Taokeyun versions up to 1.0.5

Description A critical issue has been found in the HTTP POST Request Handler component, specifically affecting the function index of the file application/index/controller/app/Video.php. The manipulation of the cid argument leads to SQL injection. This issue can be initiated remotely.

Recommendations For Taokeyun versions up to 1.0.5, as a temporary workaround, consider restricting access to the cid argument in the affected HTTP POST Request Handler until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.