CVE-2024-6308

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jun 25, 2024
CWE ID 89

Summary

CVE-2024-6308 is a critical vulnerability affecting the Simple Online Hotel Reservation System 1.0. The issue lies within the code of the index.php file and involves sql injection. By manipulating the username argument, an attacker can exploit this vulnerability remotely. The exploit for this vulnerability has been disclosed publicly, increasing the risk of potential attacks. The identifier for this vulnerability is VDB-269620.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share