CVE-2024-43772

NVD Published Date: September 02, 2024 at 05:15 AM
NVD Last Modified: September 04, 2024 at 12:11 PM
Download Patch
Vulnerability ID
CVE-2024-43772
Severity
CRITICAL
Severity Score
9.8
Summary
SQL Injection in download student learning course function of Easytest Online Test Platform ver.24E01 and earlier allow remote attackers to execute arbitrary SQL commands via the uid parameter.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-89

Recent Publish

CVE-2024-8365

CVE-2024-39816

CVE-2024-7354

CVE-2024-7690

CVE-2024-7691

CVE-2024-7692

See SecOps Solution
in action

Schedule Demo