CVE-2024-43774

NVD Published Date: September 02, 2024 at 05:15 AM
NVD Last Modified: September 04, 2024 at 12:26 PM
Download Patch
Vulnerability ID
CVE-2024-43774
Severity
HIGH
Severity Score
8.8
Summary
SQL Injection in download personal learning course function of Easytest Online Test Platform ver.24E01 and earlier allow remote authenticated users to execute arbitrary SQL commands via the uid parameter.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-89

Recent Publish

CVE-2024-43775

CVE-2024-20088

CVE-2024-43776

CVE-2024-28044

CVE-2024-20086

CVE-2024-39612

See SecOps Solution
in action

Schedule Demo