CVE-2024-7274

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Jul 30, 2024

Updated: Aug 13, 2024

CWE ID 89

Summary

CVE-2024-7274 is a critical vulnerability affecting the Alton Management System 1.0. This issue arises from a processing flaw in the file /reservation_status.php. An attacker can exploit this vulnerability by manipulating the rcode argument, leading to SQL injection. The exploit can be initiated remotely, and the vulnerability has been disclosed to the public, increasing the risk of attacks. The associated identifier for this vulnerability is VDB-273143.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xV7nJB
https://www.cve.org/CVERecord?id=CVE-2024-7274
https://nvd.nist.gov/vuln/detail/CVE-2024-7274

Back to Vulnerability Database

CVE-2024-7274

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations