CVE-2024-7454

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 4, 2024
Updated: Aug 5, 2024
CWE ID 89

Summary

CVE-2024-7454 is a critical vulnerability identified in the SourceCodester Clinics Patient Management System 1.0. This issue lies within the patient_name function of the patients.php file, making it susceptible to SQL injection attacks. The exploit can be launched remotely, increasing the threat level. The vulnerability identifier is VDB-273548, and the exploit has been disclosed to the public, potentially increasing the risk of widespread attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share