CVE-2024-9810

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Oct 10, 2024

Updated: Oct 15, 2024

CWE ID 79

Summary

CVE-2024-9810 is a newly identified vulnerability affecting the SourceCodester Record Management System version 1.0. This issue, deemed problematic, centers around an unknown functionality in the file sort2_user.php. An attacker can exploit this weakness by manipulating the argument qualification, resulting in cross-site scripting. The attack can be executed remotely, meaning an attacker does not require access to the victim's system to launch an exploit. Public disclosure of the exploit increases the risk of this vulnerability being exploited.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/zXewEx
https://www.cve.org/CVERecord?id=CVE-2024-9810
https://nvd.nist.gov/vuln/detail/CVE-2024-9810

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

Know What Matters

For Customers

For Partners

CVE-2024-9810

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations