CVE-2024-24141

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 29, 2024

Updated: Feb 2, 2024

CWE ID 89

Summary

CVE-2024-24141 is a newly disclosed vulnerability affecting the Sourcecodester School Task Manager App version 1.0. This issue permits SQL injection attacks through the 'task' parameter, enabling unauthorized users to access and manipulate sensitive data stored in the underlying database. Attackers can exploit this vulnerability to execute malicious SQL queries, potentially leading to information disclosure, data modification, or even system takeover. Organizations using this application are advised to apply the necessary patches or updates as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uRniDS
https://www.cve.org/CVERecord?id=CVE-2024-24141
https://nvd.nist.gov/vuln/detail/CVE-2024-24141

Back to Vulnerability Database

CVE-2024-24141

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations