Threat Actor: Muraider | Muraider
Victim: Mura/Masa CMS users | Mura/Masa CMS users
Price: Free
Exfiltrated Data Type: Website data
Key Points :
- A new exploit named “Muraider” automates detection and exploitation of CVE-2024-32640.
- The vulnerability is a SQL injection found in Mura/Masa CMS.
- Muraider is written in Python and integrates with Ghauri for advanced exploitation.
- The tool poses a significant threat to websites using affected CMS versions.
- Security experts recommend immediate updates and enhanced monitoring for affected installations.
A new exploit named “Muraider” has been developed to automate the detection and exploitation of CVE-2024-32640, a SQL injection vulnerability found in Mura/Masa CMS. The tool, written in Python, leverages automation to identify and exploit the vulnerability, integrating with Ghauri for advanced exploitation capabilities. This makes it a significant threat for websites using the affected CMS versions.
The release of “Muraider” highlights the growing sophistication of automated exploitation tools, increasing the urgency for website administrators to patch vulnerabilities promptly. Security experts recommend immediate updates to Mura/Masa CMS installations and enhanced monitoring to detect potential exploitation attempts.
The post New Exploit “Muraider” Targets CVE-2024-32640 with Automated SQL Injection appeared first on Daily Dark Web.
Views: 1