CVE-2024-43776

NVD Published Date: September 02, 2024 at 05:15 AM
NVD Last Modified: September 04, 2024 at 12:27 PM
Download Patch
Vulnerability ID
CVE-2024-43776
Severity
HIGH
Severity Score
8.8
Summary
SQL Injection in mock exam function of Easytest Online Test Platform ver.24E01 and earlier allow remote authenticated users to execute arbitrary SQL commands via the qlevel parameter.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-89

Recent Publish

CVE-2024-28044

CVE-2024-20086

CVE-2024-39612

CVE-2024-45527

CVE-2024-43772

CVE-2024-8365

See SecOps Solution
in action

Schedule Demo