CVE-2024-11077
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Nov 11, 2024
Updated: Nov 14, 2024
CWE ID 74
CWE ID 89
Summary
CVE-2024-11077 is a newly disclosed critical vulnerability affecting the Job Recruitment 1.0 software. The issue lies within an unidentified function of the /index.php file, which can be exploited through email manipulation. This leads to SQL injection, enabling attackers to launch remote attacks. The exploit for this vulnerability has been made public, increasing the risk of potential exploitation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share