CVE-2024-0483

Name of the Vulnerable Software and Affected Versions Taokeyun versions up to 1.0.5

Description A critical issue was found in the HTTP POST Request Handler component, specifically affecting the function index of the file application/index/controller/app/Task.php. The manipulation of the cid argument leads to SQL injection. This issue can be exploited remotely.

Recommendations For Taokeyun versions up to 1.0.5, as a temporary workaround, consider restricting access to the vulnerable function index of the Task.php file until a patch is available. Avoid using the cid argument in the affected HTTP POST Request Handler until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.