CVE-2024-9297

NVD Published Date: September 28, 2024 at 12:15 PM
NVD Last Modified: October 01, 2024 at 01:39 PM
Download Patch
Vulnerability ID
CVE-2024-9297
Severity
MEDIUM
Severity Score
6.3
Summary
A vulnerability was found in SourceCodester Online Railway Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/. The manipulation of the argument page with the input trains/schedules/system_info leads to improper authorization. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
References
Mitigation and Patches
-
Exploits
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CWE ID
CWE-862

Recent Publish

CVE-2024-8189

CVE-2024-46831

CVE-2024-46808

CVE-2023-20198

CVE-2024-1709

CVE-2024-8546

See More ...

See SecOps Solution
in action

Schedule Demo
Agentless security for your infrastructure and applications - to build faster, more securely and in a fraction of the operational cost of other solutions
hello@secopsolution.com
+569-231-213
Compare
Qualys Cloud Agent Tenable Nessus Rapid7 InsightVM
Company
About Us Contact Career
Resources
Blog Sample Reports CVE Windows KB Case Studies eBooks Policy Templates Webinar
Try It
Patch Astra EPSS Calculator Contact Free Scan Schedule Demo Log In
© 2024  SecOps Solution, Inc.| Privacy Policy | Terms and Conditions .
Social Media :