CVE-2024-2713
CVSS 3.1 Score 7.2 of 10 (high)
Details
Published Mar 21, 2024
Updated: May 17, 2024
CWE ID 121
CWE ID 120
Summary
CVE-2024-2713 is a critical vulnerability impacting the Campcodes Complete Online DJ Booking System version 1.0. An unknown function in the /admin/booking-search.php file is the culprit, and it allows for sql injection by manipulating the argument searchdata. This vulnerability can be exploited remotely, meaning attacks can originate from outside the system. The exploit for this issue has been made public, increasing the risk of potential attacks. (VDB-257466 is the identifier assigned to this vulnerability.)
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share