CVE-2024-8086

NVD Published Date: August 22, 2024 at 11:15 PM
NVD Last Modified: August 27, 2024 at 01:17 PM
Download Patch
Vulnerability ID
CVE-2024-8086
Severity
CRITICAL
Severity Score
9.8
Summary
A vulnerability has been found in SourceCodester E-Commerce System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ecommerce/admin/login.php of the component Admin Login. The manipulation of the argument user_email leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Mitigation and Patches
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-89

Recent Publish

CVE-2024-38210

CVE-2024-38208

CVE-2024-38209

CVE-2024-8089

CVE-2024-43477

CVE-2024-7559

See SecOps Solution
in action

Schedule Demo