CVE-2024-12943
CVSS 2.0 Score 7.5 of 10 (high)
Details
Published Dec 26, 2024
Updated: Dec 27, 2024
CWE ID 89
CWE ID 74
Summary
CVE-2024-12943 is a newly disclosed critical vulnerability impacting the CodeAstro House Rental Management System 1.0. This issue affects an unknown functionality within the /ownersignup.php file, allowing for sql injection attacks. The exploit can be executed remotely, and the initial advisory suggests that the parameter "m" is susceptible. However, it's important to note that other parameters are likely to be affected as well. The vulnerability has been made public, and potential attackers may already be exploiting it.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share