Quiz System Vulnerable to Cross-Site Request Forgery
CVE-2024-7367
8.8HIGH
What is CVE-2024-7367?
A cross-site request forgery vulnerability exists in SourceCodester's Simple Realtime Quiz System 1.0, specifically affecting the /ajax.php?action=save_user endpoint. This security flaw allows attackers to exploit the system remotely by manipulating requests, potentially compromising user data and functionality. The vulnerability has been publicly disclosed and poses a risk to any system utilizing this software version, warranting immediate attention and remediation by affected users.