CVE-2024-0468

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 12, 2024

Updated: May 17, 2024

CWE ID 434

Summary

CVE-2024-0468 is a critical vulnerability affecting the Fighting Cock Information System 1.0. This issue lies in an unidentified functionality of the /admin/action/new-father.php file. Manipulation of the 'image' argument triggers an unrestricted upload, making it exploitable remotely. The exploit for this vulnerability has been disclosed, increasing the risk of potential attacks. Vulnerability Database has assigned the identifier VDB-250573 to this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Code Projects

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uHl-zj
https://www.cve.org/CVERecord?id=CVE-2024-0468
https://nvd.nist.gov/vuln/detail/CVE-2024-0468

Back to Vulnerability Database

CVE-2024-0468

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations