CVE-2024-0651

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Jan 18, 2024
Updated: May 17, 2024
CWE ID 89

Summary

CVE-2024-0651 is a newly disclosed critical vulnerability affecting PHPGurukul Company's Visitor Management System version 1.0. An unknown functionality in the file search-visitor.php is the culprit, allowing for sql injection attacks. These attacks can be initiated remotely, making the vulnerability particularly dangerous. The exploit for this issue has been made public, increasing the risk of potential exploitation. Vulnerability Database (VDB) has assigned the identifier VDB-251377 to this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share