CVE-2024-7444
CVE-2024-7444
Título es
CVE-2024-7444
Sáb, 03/08/2024 – 20:15
Tipo
CWE-89
Gravedad v2.0
7.50
Gravedad 2.0 Txt
HIGH
Título en
CVE-2024-7444
Descripción en
A vulnerability classified as critical was found in itsourcecode Ticket Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php of the component Login Page. The manipulation of the argument username leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-273529 was assigned to this vulnerability.
03/08/2024
03/08/2024
Vector CVSS:3.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Vector CVSS:2.0
AV:N/AC:L/Au:N/C:P/I:P/A:P
Gravedad 3.1 (CVSS 3.1 Base Score)
7.30
Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
HIGH
Referencias
Enviar en el boletín
Off
