CVE-2024-10561

Name of the Vulnerable Software and Affected Versions Codezips Pet Shop Management System version 1.0 Codezips Pet Shop Management System versions 1.0 through 2.5

Description A critical issue has been identified in the Codezips Pet Shop Management System, specifically affecting the file birdsupdate.php. The manipulation of the id argument leads to SQL injection, and it is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Recommendations For Codezips Pet Shop Management System version 1.0, update to the latest release to mitigate risks. For Codezips Pet Shop Management System versions 1.0 through 2.5, update to the latest version to mitigate risks. As a temporary workaround, consider restricting access to the birdsupdate.php file until a patch is available. Avoid using the id argument in the affected file until the issue is resolved.