CVE-2024-7290
CVSS 3.1 Score 6.3 of 10 (medium)
Details
Summary
CVE-2024-7290 is a critical vulnerability found in SourceCodester Establishment Billing Management System 1.0. The vulnerability allows for SQL injection through the manipulation of the "id" argument in the file /manage_tenant.php. This vulnerability can be exploited remotely, and the exploit has been disclosed to the public. The associated identifier for this vulnerability is VDB-273159. It affects the product xVeDvN and poses a potential danger to organizations using this system as it can lead to unauthorized access and manipulation of data. It is recommended that organizations apply patches or updates provided by SourceCodester to remediate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.