CVE-2024-7911

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 18, 2024
Updated: Aug 19, 2024
CWE ID 610
CWE ID 73

Summary

CVE-2024-7911 is a critical vulnerability affecting the SourceCodester Simple Online Bidding System 1.0. An attacker can manipulate the 'page' argument in the index.php file, leading to file inclusion. This vulnerability allows for remote attacks and the exploit has been made public, increasing the risk for potential exploitation. The exact component of the file is unknown, but the exploitation can result in significant security implications. Organizations using this system are urged to apply the necessary patches or updates to mitigate this issue.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share