CVE-2024-2570

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Mar 18, 2024

Updated: May 17, 2024

CWE ID 79

Summary

CVE-2024-2570 is a critical vulnerability affecting the SourceCodester Employee Task Management System 1.0. An unknown part of the file /edit-task.php contains a manipulation issue that enables execution after redirect. This vulnerability can be exploited remotely, making it a serious threat. The exploit for this vulnerability, identified as VDB-257073, has been disclosed to the public, increasing the risk of potential attacks. Systems running this version of the Employee Task Management System are advised to apply the necessary patches as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/udtUix
https://www.cve.org/CVERecord?id=CVE-2024-2570
https://nvd.nist.gov/vuln/detail/CVE-2024-2570

Back to Vulnerability Database

CVE-2024-2570

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations