{"vulnerability": "cve-2024-0288", "sightings": [{"uuid": "ede72748-60f8-465a-822e-a04d449d0823", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0288", "type": "seen", "source": "https://t.me/ctinow/173280", "content": "https://ift.tt/Z0blXoU\nCVE-2024-0288 | Kashipara Food Management System 1.0 rawstock_used_damaged_submit.php product_name sql injection", "creation_timestamp": "2024-01-25T06:31:32.000000Z"}, {"uuid": "beb20daf-f570-4c88-b464-e249b6e11d10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0288", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18678", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-0288\n\ud83d\udd25 CVSS Score: 6.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L)\n\ud83d\udd39 Description: A vulnerability classified as critical has been found in Kashipara Food Management System 1.0. This affects an unknown part of the file rawstock_used_damaged_submit.php. The manipulation of the argument product_name leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-249849 was assigned to this vulnerability.\n\ud83d\udccf Published: 2024-01-07T23:31:03.842Z\n\ud83d\udccf Modified: 2025-06-17T20:29:15.747Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.249849\n2. https://vuldb.com/?ctiid.249849\n3. https://github.com/laoquanshi/heishou/blob/main/Food%20Management%20System%20SQL%20Injection%20Vulnerability12.md", "creation_timestamp": "2025-06-17T20:40:13.000000Z"}]}