CVE-2024-6954
CVSS 3.1 Score 6.1 of 10 (medium)
Details
Summary
CVE-2024-6954 is a newly disclosed vulnerability affecting SourceCodester Record Management System 1.0. The issue lies in an unidentified functionality of the file "sort1.php," which can be exploited through manipulation of argument positions. This results in a cross-site scripting (XSS) vulnerability, allowing attackers to inject malicious code into a victim's browser. The exploit can be launched remotely, increasing the attack surface. The vulnerability has been made public, raising concerns about potential widespread exploitation. Vulnerability Database assigned the identifier VDB-272077 to this issue.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.