CVE-2024-7455

NVD Published Date: August 04, 2024 at 12:16 PM
NVD Last Modified: August 29, 2024 at 02:57 AM
Download Patch
Vulnerability ID
CVE-2024-7455
Severity
CRITICAL
Severity Score
9.8
Summary
A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System 1.0. This affects an unknown part of the file partedit.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-273549 was assigned to this vulnerability.
Mitigation and Patches
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-89

Recent Publish

CVE-2024-35143

Security Update for SQL Server 2016 Service Pack 3 CU (KB5040944)

Security Update for SQL Server 2016 Service Pack 3 GDR (KB5040946)

Security Update for SQL Server 2019 RTM CU (KB5040948)

Security Update for SQL Server 2019 RTM GDR (KB5040986)

2024-07 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Microsoft server operating system version 21H2 for x64 (KB5041016)

See SecOps Solution
in action

Schedule Demo