CVE-2018-7600
CVSS 3.0 Score 9.8 of 10 (critical)
Details
Published Mar 29, 2018
Updated: Mar 1, 2019
CWE ID 20
Summary
CVE-2024-7934 is a critical vulnerability affecting the Project Expense Monitoring System 1.0. An unknown functionality of the file execute.php contains a sql injection flaw. By manipulating the argument code, an attacker can execute malicious SQL statements, making the vulnerability remotely exploitable. The exploit for this issue has been disclosed to the public, posing a significant risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Drupal
- Debian
Affected Vendors
- Debian