CVE-2024-8221

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 27, 2024
Updated: Aug 29, 2024
CWE ID 89

Summary

CVE-2024-8221 is a critical SQL injection vulnerability affecting SourceCodester Music Gallery Site version 1.0, specifically in the file /admin/categories/manage_category.php. The vulnerability allows unauthorized remote attackers to manipulate the argument id, potentially compromising the confidentiality, integrity, and availability of the system. Remediation may involve updating to a secure version or applying patches provided by SourceCodester. The exploit has been publicly disclosed, increasing the urgency for affected organizations to address this security risk promptly. Failure to mitigate this vulnerability may lead to significant data breaches and unauthorized access to sensitive information.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share