CVE-2024-2942

CVSS 3.1 Score 6.2 of 10 (medium)

Details

Published Mar 27, 2024

Updated: May 17, 2024

CWE ID 121

Summary

CVE-2024-2942 is a critical vulnerability affecting the Campcodes Online Examination System 1.0.An unknown part of the file /adminpanel/admin/query/deleteQuestionExe.php contains a weakness, allowing for sql injection attacks. By manipulating the id argument, an attacker can initiate this exploit remotely. This vulnerability, identified as VDB-258033, has been publicly disclosed and exploitation is possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vJFCT-
https://www.cve.org/CVERecord?id=CVE-2024-2942
https://nvd.nist.gov/vuln/detail/CVE-2024-2942

Back to Vulnerability Database

CVE-2024-2942

CVSS 3.1 Score 6.2 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations