CVE-2024-2713

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Mar 21, 2024

Updated: May 17, 2024

CWE ID 121

CWE ID 120

Summary

CVE-2024-2713 is a critical vulnerability impacting the Campcodes Complete Online DJ Booking System version 1.0. An unknown function in the /admin/booking-search.php file is the culprit, and it allows for sql injection by manipulating the argument searchdata. This vulnerability can be exploited remotely, meaning attacks can originate from outside the system. The exploit for this issue has been made public, increasing the risk of potential attacks. (VDB-257466 is the identifier assigned to this vulnerability.)

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ulcWyK
https://www.cve.org/CVERecord?id=CVE-2024-2713
https://nvd.nist.gov/vuln/detail/CVE-2024-2713

Back to Vulnerability Database

CVE-2024-2713

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations