CVE-2024-0290

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 8, 2024
Updated: Mar 21, 2024
CWE ID 89

Summary

A critical vulnerability, with the CVE ID CVE-2024-0290, has been discovered in Kashipara Food Management System 1.0. The vulnerability arises from improper handling of the file stock_edit.php, specifically from a manipulated argument called item_type, which can lead to SQL injection. This vulnerability can be exploited remotely and has been publicly disclosed. It poses a high risk to organizations as it can result in unauthorized access, data manipulation, and potentially even complete system compromise if not remediated promptly.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-0290 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options