CVE-2024-2073
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Mar 1, 2024
Updated: Jan 2, 2025
CWE ID 416
Summary
CVE-2024-2073 is a newly disclosed critical vulnerability in SourceCodester Block Inserter for Dynamic Content version 1.0. The issue lies within the file view_post.php, specifically in an unspecified section of the code. An attacker can exploit this vulnerability through manipulation of the id argument, resulting in SQL injection. The exploit can be initiated remotely, making it a significant threat. The vulnerability identifier is VDB-255388, and the exploit has already been made public, increasing the risk of potential attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share