CVE-2024-11673

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Nov 25, 2024
Updated: Dec 4, 2024
CWE ID 352
CWE ID 862

Summary

CVE-2024-11673 is a newly disclosed vulnerability affecting the 1000 Projects Bookstore Management System 1.0. This issue is classified as problematic and involves unspecified processing where manipulation can occur. The result is a cross-site request forgery (CSRF) vulnerability, which can be exploited remotely. An attacker who successfully exploits this flaw can perform unauthorized actions on behalf of a victim, potentially leading to serious security consequences. The exploit for this vulnerability has been made public, increasing the risk for potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share