CVE-2024-7838

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 15, 2024

Updated: Aug 19, 2024

CWE ID 89

Summary

CVE-2024-7838 is a critical vulnerability affecting the Online Food Ordering System 1.0. This issue lies within the unspecified functionality of the file /addcategory.php. An attacker can exploit this vulnerability by manipulating the argument 'cname,' leading to SQL injection. The exploit can be executed remotely, increasing the potential threat. The vulnerability has been publicly disclosed, raising concerns for potential misuse.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Online Food Ordering System

Affected Vendors

Itsourcecode

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xyA6WR
https://www.cve.org/CVERecord?id=CVE-2024-7838
https://nvd.nist.gov/vuln/detail/CVE-2024-7838

Back to Vulnerability Database