CVE-2024-3351

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Apr 5, 2024
Updated: May 17, 2024
CWE ID 121

Summary

CVE-2024-3351 is a critical vulnerability affecting the SourceCodester Aplaya Beach Resort Online Reservation System 1.0. The issue lies in the admin/mod_roomtype/index.php file, which is susceptible to SQL injection due to the manipulation of the id argument. Attackers can exploit this remotely, and the exploit has been made public. This vulnerability, identified as VDB-259455, can lead to significant security risks if not addressed promptly.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share