CVE-2024-9817

Summary

CVE-2024-9817 is a critical vulnerability found in the Blood Bank System 1.0, specifically affecting the /update.php file, which is susceptible to SQL injection through manipulation of the argument name. This vulnerability allows remote attackers to exploit the system, potentially compromising data integrity and confidentiality. The vulnerability has been publicly disclosed, increasing the risk of exploitation. Affected organizations should apply patches or updates from Code Projects or implement mitigations to prevent unauthorized access and secure their databases. The CVSS score for this vulnerability is 6.3, indicating a medium severity level with low requirements for privileges and user interaction.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.