CVE-2024-6728

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 14, 2024

Updated: Jul 15, 2024

CWE ID 89

Summary

CVE-2024-6728 is a critical vulnerability identified in the Tailoring Management System 1.0. The issue lies within the file typeedit.php, allowing an attacker to manipulate the argument id and initiate SQL injection. This vulnerability can be exploited remotely, making it a significant threat. The exploit for this vulnerability has been disclosed to the public, increasing the risk of potential attacks. Vulnerability Database has assigned the identifier VDB-271401 to this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Tailoring Management System

Affected Vendors

Itsourcecode

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/w-4Kg-
https://www.cve.org/CVERecord?id=CVE-2024-6728
https://nvd.nist.gov/vuln/detail/CVE-2024-6728

Back to Vulnerability Database