CVE-2024-2767

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 21, 2024

Updated: May 17, 2024

CWE ID 277

Summary

CVE-2024-2767 is a critical vulnerability affecting the Campcodes Complete Online Beauty Parlor Management System version 1.0. The issue lies in the processing of the file /admin/forgot-password.php, where manipulation of the email argument can lead to sql injection. This vulnerability allows remote attackers to exploit the system, and the exploit has been disclosed to the public. The associated identifier for this vulnerability is VDB-257603.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Macro Expert

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uqCgx2
https://www.cve.org/CVERecord?id=CVE-2024-2767
https://nvd.nist.gov/vuln/detail/CVE-2024-2767

Back to Vulnerability Database

CVE-2024-2767

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations