CVE-2024-6903

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jul 19, 2024
Updated: Jul 24, 2024
CWE ID 89

Summary

CVE-2024-6903 is a critical vulnerability affecting SourceCodester Record Management System 1.0. A previously unknown functionality in the file sort1_user.php is the culprit, allowing for sql injection attacks. The manipulation of argument positions can be exploited remotely, making this a significant risk. The exploit for this vulnerability has been made public, increasing the potential for widespread exploitation. This issue has been assigned the identifier VDB-271928 by Vulnerability Database.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share