CVE-2024-8611

Name of the Vulnerable Software and Affected Versions: itsourcecode Tailoring Management System version 1.0

Description: A critical issue was found in the itsourcecode Tailoring Management System, affecting an unknown functionality of the file ssms.php. The manipulation of the customer argument leads to SQL injection. The attack can be launched remotely.

Recommendations: For itsourcecode Tailoring Management System version 1.0, patch immediately to fix the SQL injection issue in the ssms.php file. Additionally, check for signs of compromise due to potential unauthenticated RCE. As a temporary workaround, consider restricting access to the ssms.php file until a patch is applied.