CVE-2024-5046

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published May 17, 2024

Updated: Jun 4, 2024

CWE ID 89

Summary

CVE-2024-5046 is a critical vulnerability affecting the SourceCodester Online Examination System 1.0. This issue arises from the processing of the file registeracc.php, where manipulation of the email argument can lead to SQL injection. This vulnerability can be exploited remotely, meaning an attacker does not need to have local access to the system to take advantage of it. The exploit for this vulnerability (VDB-264743) has been disclosed to the public, increasing the risk of its exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/v-Q4gZ
https://www.cve.org/CVERecord?id=CVE-2024-5046
https://nvd.nist.gov/vuln/detail/CVE-2024-5046

Back to Vulnerability Database

CVE-2024-5046

CVSS 3.1 Score 7.3 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations