CVE-2024-57430 Information

Description

An SQL injection vulnerability in the pjActionGetUser function of PHPJabbers Cinema Booking System v2.0 allows attackers to manipulate database queries via the column parameter. Exploiting this flaw can lead to unauthorized information disclosure privilege escalation or database manipulation.

Reference

https://github.com/ahrixia/CVE-2024-57430 https://www.phpjabbers.com/cinema-booking-system/