CVE-2024-10742

Name of the Vulnerable Software and Affected Versions Wazifa System version 1.0

Description A critical issue affects the processing of the file /controllers/control.php, where the manipulation of the argument leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Recommendations For version 1.0, consider disabling the processing of the file /controllers/control.php or restricting access to it until a patch is available. Avoid using arguments that may lead to sql injection in the affected file. As a temporary workaround, restrict remote access to minimize the risk of exploitation.