CVE-2024-2516

CVSS 3.1 Score 6.3 of 10 (medium)

Details

Published Mar 16, 2024
Updated: Mar 21, 2024
CWE ID 89

Summary

A critical vulnerability, identified as CVE-2024-2516, has been found in MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0. The vulnerability allows for SQL injection through manipulation of the "id" argument in the "home.php" file. This can be exploited remotely, and the exploit has been publicly disclosed. The affected vendor was informed about the disclosure but did not respond. The vulnerability poses a potential danger to organizations using this system, as it can lead to unauthorized access and manipulation of databases.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share