Campcodes Online Examination System 1.0 updateCourse.php ISazisi Ukubhalwa kwekhodi okweqa indawo
| CVSS Meta Temp Isilinganiso | Intengo yamanje ye-exploit (≈) | CTI Inzalo Score |
|---|---|---|
| 4.3 | $0-$5k | 0.00 |
Isifinyezo
Kubonakale ubuthakathaka obubizwa ngokuthi kuyinkinga ku Campcodes Online Examination System 1.0. Kuthintekile umsebenzi $software_function kufayela /adminpanel/admin/facebox_modal/updateCourse.php. Ukuphathwa kwepharamitha ISazisi kuholela ku Ukubhalwa kwekhodi okweqa indawo.
Le buthakathaka itholakala njenge CVE-2024-2940. Ukuhlasela kungaqalwa kude. Ngaphezu kwalokho, i-exploit ikhona.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Iinkcukacha
Kubonakale ubuthakathaka obubizwa ngokuthi kuyinkinga ku Campcodes Online Examination System 1.0. Kuthintekile umsebenzi $software_function kufayela /adminpanel/admin/facebox_modal/updateCourse.php. Ukuphathwa kwepharamitha ISazisi kuholela ku Ukubhalwa kwekhodi okweqa indawo. Ukusebenzisa i-CWE ukusho inkinga kuholela ku-CWE-79. Kuboniswe ubuthakathaka lolu. Isaziso singalayishwa ku-github.com.
Le buthakathaka itholakala njenge CVE-2024-2940. Ukuhlasela kungaqalwa kude. Kukhona imininingwane yezobuchwepheshe etholakalayo. Le vulnerability ayidumi kakhulu, idlula phansi kokujwayelekile. Ngaphezu kwalokho, i-exploit ikhona. Ukuhlaselwa sekudalulwe ebantwini futhi kungasetshenziswa. Okwamanje, intengo yamanje ye-exploit ingaba cishe USD $0-$5k ngalesi sikhathi.
Ungakwazi ukulanda i-exploit ku-github.com.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Umkhiqizo
Umkhiqizi
Ibizo
Inguqulo
Ilayisense
Iwebhusayithi
- Umkhiqizi: https://www.campcodes.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Umkhombandlela: 🔍VulDB Ukuthembeka: 🔍
CVSSv3
VulDB Ireyithingi yeMeta Base: 4.4VulDB Meta Temp Isilinganiso: 4.3
VulDB Isilinganiso Esiyisisekelo: 3.5
VulDB Izinga Lesikhashana: 3.2
VulDB Umkhombandlela: 🔍
VulDB Ukuthembeka: 🔍
NVD Isilinganiso Esiyisisekelo: 6.1
NVD Umkhombandlela: 🔍
CNA Isilinganiso Esiyisisekelo: 3.5
CNA Umkhombandlela (VulDB): 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Umkhombandlela | Ubunzima | Ukufakazela ubuwena | Ukuyimfihlo | Ukuthembeka | Ukutholakala |
|---|---|---|---|---|---|
| vula ukufinyelela | vula ukufinyelela | vula ukufinyelela | vula ukufinyelela | vula ukufinyelela | vula ukufinyelela |
| vula ukufinyelela | vula ukufinyelela | vula ukufinyelela | vula ukufinyelela | vula ukufinyelela | vula ukufinyelela |
| vula ukufinyelela | vula ukufinyelela | vula ukufinyelela | vula ukufinyelela | vula ukufinyelela | vula ukufinyelela |
VulDB Isilinganiso Esiyisisekelo: 🔍
VulDB Izinga Lesikhashana: 🔍
VulDB Ukuthembeka: 🔍
NVD Isilinganiso Esiyisisekelo: 🔍
Ukusebenzisa ithuba lokungavikeleki
Ikilasi: Ukubhalwa kwekhodi okweqa indawoCWE: CWE-79 / CWE-94 / CWE-74
CAPEC: 🔍
ATT&CK: 🔍
Okubambekayo: Hayi
Wendawo: Hayi
Kude: Yebo
Ukutholakala: 🔍
Umnyango: Umphakathi
Isimo: Ubufakazi-bokusebenza
Landa: 🔍
Google Hack: 🔍
EPSS Score: 🔍
EPSS Percentile: 🔍
Ukukhula kwentengo: 🔍
Okwamanje ukuhlolwa kwentengo: 🔍
| 0-Day | vula ukufinyelela | vula ukufinyelela | vula ukufinyelela | vula ukufinyelela |
|---|---|---|---|---|
| Namuhla | vula ukufinyelela | vula ukufinyelela | vula ukufinyelela | vula ukufinyelela |
Ulwazi lwezingozi
Intshisekelo: 🔍Abadlali abasebenzayo: 🔍
AmaQembu e-APT asebenzayo: 🔍
Izinyathelo zokuvikela
Isincomo: akukho sithathwa esaziwayoIsimo: 🔍
0-Suku Isikhathi: 🔍
Isikhathi somlando
2024-03-26 🔍2024-03-26 🔍
2024-03-26 🔍
2025-04-13 🔍
Imithombo
Umkhiqizi: campcodes.comIseluleko: github.com
Isimo: Akuchazwanga
CVE: CVE-2024-2940 (🔍)
GCVE (CVE): GCVE-0-2024-2940
GCVE (VulDB): GCVE-100-258031
scip Labs: https://www.scip.ch/en/?labs.20161013
Ukungena
Kudalwa: 2024-03-26 17:35Ukuvuselelwa: 2025-04-13 04:07
Ukulungiswa: 2024-03-26 17:35 (55), 2024-05-05 09:01 (2), 2024-05-05 09:03 (18), 2024-06-05 22:22 (8), 2025-02-20 04:36 (12), 2025-04-13 04:07 (3)
Kugcwele: 🔍
Umthumeli: willchen
Cache ID: 253:23C:103
Thumela
Yamukelwa
- Thumela #304748: campcodes Online Examination System ≤1.0 XSS injection (kusuka ku willchen)
Kuze kube manje akukabikho ukuphawula. Izilimi: nr + nd + en.
Ngiyacela ungene ngemvume ukuze ukwazi ukuphawula.