Overview
- Description
- A vulnerability was found in code-projects Courier Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /track-result.php. The manipulation of the argument Consignment leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
- Source
- cna@vuldb.com
- NVD status
- Analyzed
Risk scores
CVSS 4.0
- Type
- Secondary
- Base score
- 6.9
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- MEDIUM
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
CVSS 2.0
- Type
- Secondary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Social media
- Hype score
- Not currently trending
🚨 CVE-2024-10607 (Published: 2024-11-01) - A critical vulnerability in Code Projects affects multiple versions. Users are urged to update to the latest release to mitigate risks. For detailed remediation steps, check the issue here: https://t.co/RrtPcJi2ta #CyberSecurity #CVE
@transilienceai
4 Nov 2024
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2024-10607 (Published: 2024-11-01) - A critical vulnerability affecting Code Projects. Ensure you're on the latest version to mitigate risks. For detailed remediation steps, check the issue here: https://t.co/RrtPcJi2ta. Stay secure! #CyberSecurity #CVE
@transilienceai
4 Nov 2024
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2024-10607 (Published: 2024-11-01) - A critical vulnerability in Code Projects affects multiple versions. Users are urged to update to the latest release immediately to mitigate risks. For more details and remediation steps, visit: https://t.co/RrtPcJi2ta #CyberSecurity… h
@transilienceai
4 Nov 2024
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2024-10607 (Published: 2024-11-01) - A critical vulnerability has been identified in Unknown. Affected versions are currently under scrutiny. For remediation, ensure you update to the latest patch available. Stay secure! 🔒 More info: https://t.co/BrOve8Synw #CyberSecurity
@transilienceai
4 Nov 2024
7 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2024-10607 (Published: 2024-11-01) - A critical vulnerability has been identified in an unknown product. Affected versions are currently under investigation. Users are advised to monitor official channels for updates and apply any available patches immediately to mitigate…
@transilienceai
4 Nov 2024
18 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-10607 Critical SQL Injection Exploit in Courier Management System 1.0 A critical vulnerability exists in code-projects Courier Management System 1.0. It impacts an unknown part of the /track-result.php f... https://t.co/12dEMd1wSq
@VulmonFeeds
1 Nov 2024
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-10607 A vulnerability was found in code-projects Courier Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /track… https://t.co/OFjCZ2st5J
@CVEnew
1 Nov 2024
610 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:carmelogarcia:courier_management_system:1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B6A68C07-333F-4BBA-84AE-DB7B0FE774EC"
}
],
"operator": "OR"
}
]
}
]