CVE-2024-7798

NVD Published Date: August 15, 2024 at 12:15 AM
NVD Last Modified: August 19, 2024 at 04:42 PM
Download Patch
Vulnerability ID
CVE-2024-7798
Severity
CRITICAL
Severity Score
9.8
Summary
A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=login2. The manipulation of the argument username leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Mitigation and Patches
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-89

Recent Publish

CVE-2024-7799

CVE-2024-7797

CVE-2024-7625

CVE-2024-7808

CVE-2024-7810

CVE-2024-7809

See SecOps Solution
in action

Schedule Demo