CVE-2024-0983

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Feb 29, 2024
Updated: Dec 27, 2024
CWE ID 862

Summary

CVE-2024-2152 is a recently disclosed critical vulnerability affecting the SourceCodester Online Mobile Management Store 1.0. This issue lies in an unknown functionality of the file /admin/product/manage_product.php, which can be exploited through sql injection by manipulating the argument id. An attacker can take advantage of this vulnerability remotely and has already gained public knowledge of the exploit.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share