CVE-2024-7306
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Jul 31, 2024
Updated: Aug 12, 2024
CWE ID 89
Summary
CVE-2024-7306 is a critical vulnerability affecting the SourceCodester Establishment Billing Management System 1.0. This issue lies in an unidentified function within the /manage_block.php file, which can be exploited through SQL injection. Manipulation of the id argument allows attackers to launch remote attacks, taking advantage of the disclosed exploit (VDB-273198).
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Establishment Billing Management System