CVE-2024-7641

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 12, 2024
Updated: Aug 15, 2024
CWE ID 89

Summary

CVE-2024-7641 is a newly disclosed critical vulnerability affecting the SourceCodester Kortex Lite Advocate Office Management System version 1.0. An unknown function in the file deactivate_act.php contains a SQL injection flaw, which can be exploited by manipulating the argument id. This vulnerability enables remote attacks, making it a significant security risk. The exploit for this issue has been made public, increasing the potential for widespread exploitation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share