CVE-2024-7911
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Aug 18, 2024
Updated: Aug 19, 2024
CWE ID 610
CWE ID 73
Summary
CVE-2024-7911 is a critical vulnerability affecting the SourceCodester Simple Online Bidding System 1.0. An attacker can manipulate the 'page' argument in the index.php file, leading to file inclusion. This vulnerability allows for remote attacks and the exploit has been made public, increasing the risk for potential exploitation. The exact component of the file is unknown, but the exploitation can result in significant security implications. Organizations using this system are urged to apply the necessary patches or updates to mitigate this issue.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share