CVE-2024-6439

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 2, 2024

CWE ID 434

Summary

CVE-2024-6439 is a critical vulnerability affecting the SourceCodester Home Owners Collection Management System 1.0. This issue is related to the processing of the file /classes/Users.php?f=save. An attacker can exploit this vulnerability by manipulating the argument img, resulting in an unrestricted file upload. The exploit can be initiated remotely, making it a significant security risk. The vulnerability has been disclosed to the public, increasing the potential for exploitation. The associated identifier for this vulnerability is VDB-270167.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/wxIz_T
https://www.cve.org/CVERecord?id=CVE-2024-6439
https://nvd.nist.gov/vuln/detail/CVE-2024-6439

Back to Vulnerability Database

CVE-2024-6439

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations