CVE-2024-0729

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 19, 2024

Updated: May 17, 2024

CWE ID 89

Summary

CVE-2024-0729 is a critical vulnerability affecting ForU CMS versions up to 2020-06-23. This issue lies within the cms_admin.php file and stems from a manipulable argument named a_name. The exploitation of this vulnerability results in sql injection, making it a significant security risk. The vulnerability identification number for this issue is VDB-251552. Notably, the exploit for this vulnerability has been publicly disclosed, increasing the threat potential.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uNFnli
https://www.cve.org/CVERecord?id=CVE-2024-0729
https://nvd.nist.gov/vuln/detail/CVE-2024-0729

Back to Vulnerability Database

CVE-2024-0729

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations