CVE-2024-49612

Name of the Vulnerable Software and Affected Versions Infotuts SW Contact Form versions n/a through 1.0

Description The issue is related to an SQL Injection vulnerability, specifically a Blind SQL Injection, due to the improper neutralization of special elements used in an SQL command. This allows an attacker to inject malicious SQL code, potentially leading to unauthorized access or manipulation of data. The estimated number of potentially affected devices worldwide is not specified. There is no information provided about real-world incidents where this issue was exploited.

Recommendations For Infotuts SW Contact Form versions n/a through 1.0, update to a newer version to mitigate the risk of Blind SQL Injection. At the moment, there is no information about a newer version that contains a fix for this vulnerability.