CVE-2024-12944

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Dec 26, 2024
Updated: Dec 27, 2024
CWE ID 89
CWE ID 74

Summary

CVE-2024-12944 is a critical vulnerability affecting CodeAstro House Rental Management System 1.0. The issue lies within some unidentified functionality of the file /signin.php, which is susceptible to SQL injection. An attacker can manipulate the argument "u/p" to launch a remote attack, making this a significant security concern. The exploit for this vulnerability has been made public, increasing the risk for potential exploitation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share