CVE-2024-12944
CVSS 3.1 Score 7.3 of 10 (high)
Details
Published Dec 26, 2024
Updated: Dec 27, 2024
CWE ID 89
CWE ID 74
Summary
CVE-2024-12944 is a critical vulnerability affecting CodeAstro House Rental Management System 1.0. The issue lies within some unidentified functionality of the file /signin.php, which is susceptible to SQL injection. An attacker can manipulate the argument "u/p" to launch a remote attack, making this a significant security concern. The exploit for this vulnerability has been made public, increasing the risk for potential exploitation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share