CVE-2024-6371

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jun 27, 2024

Updated: Aug 20, 2024

CWE ID 89

Summary

CVE-2024-6371 is a critical vulnerability identified in the Pool of Bethesda Online Reservation System 1.0. This issue lies in the functionality of the file controller.php, where the argument rmtype_id can be manipulated to execute SQL injection attacks. The exploit can be launched remotely, and the vulnerability details have been disclosed to the public, increasing the risk of potential attacks. This issue has been assigned the identifier VDB-269804 by Vulnerability Database.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Pool of Bethesda Online Reservation System

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/wrSWHe
https://www.cve.org/CVERecord?id=CVE-2024-6371
https://nvd.nist.gov/vuln/detail/CVE-2024-6371

Back to Vulnerability Database

CVE-2024-6371

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations