CVE-2024-2073

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 1, 2024

Updated: Jan 2, 2025

CWE ID 416

Summary

CVE-2024-2073 is a newly disclosed critical vulnerability in SourceCodester Block Inserter for Dynamic Content version 1.0. The issue lies within the file view_post.php, specifically in an unspecified section of the code. An attacker can exploit this vulnerability through manipulation of the id argument, resulting in SQL injection. The exploit can be initiated remotely, making it a significant threat. The vulnerability identifier is VDB-255388, and the exploit has already been made public, increasing the risk of potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ugadz6
https://www.cve.org/CVERecord?id=CVE-2024-2073
https://nvd.nist.gov/vuln/detail/CVE-2024-2073

Back to Vulnerability Database

CVE-2024-2073

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations