CVE-2024-2554

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 17, 2024

Updated: May 17, 2024

CWE ID 358

Summary

CVE-2024-2554 is a critical vulnerability affecting SourceCodester Employee Task Management System 1.0. The issue lies within an unidentified functionality of the file update-employee.php, where manipulation of the admin_id argument can result in SQL injection. This vulnerability allows remote attacks and the exploit has been made public, increasing the risk of potential exploitation. Vulnerability database identifier VDB-257053 has been assigned to this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ubjrJO
https://www.cve.org/CVERecord?id=CVE-2024-2554
https://nvd.nist.gov/vuln/detail/CVE-2024-2554

Back to Vulnerability Database

CVE-2024-2554

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations