CVE-2024-7328
CVSS 3.1 Score 5.3 of 10 (medium)
Details
Summary
CVE-2024-7328 is a newly disclosed vulnerability affecting the YouDianCMS 7 platform. The issue lies in the processing of the /t.php?action=phpinfo file, which can lead to information disclosure when manipulated. This vulnerability is remotely exploitable, meaning an attacker can take advantage of it without requiring any prior access to the system. The public disclosure of the exploit increases the risk of potential attacks. The identifier for this vulnerability has been assigned as VDB-273251. Unfortunately, the vendor has not responded to earlier disclosure notifications.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Youdiancms