CVE-2024-7222

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 30, 2024

CWE ID 89

Summary

CVE-2024-7222 is a critical vulnerability affecting SourceCodester Lot Reservation Management System 1.0. An unknown function in the /home.php file is vulnerable to SQL injection due to improper argument handling. Attackers can exploit this remotely by manipulating the argument type, potentially leading to unauthorized database access and data theft. The exploit for this vulnerability, identified as VDB-272802, has been made public, increasing the risk of attacks. System users are urged to apply the necessary patches or updates as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xUmR6v
https://www.cve.org/CVERecord?id=CVE-2024-7222
https://nvd.nist.gov/vuln/detail/CVE-2024-7222

Back to Vulnerability Database

CVE-2024-7222

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations