CVE-2024-36840 | Boelter Blue System Management 1.3 news_details.php id sql injection

Inserito da Angelo Barbosa | Giu 9, 2024 | CVE

A vulnerability was found in Boelter Blue System Management 1.3. It has been classified as critical. Affected is an unknown function of the file news_details.php. The manipulation of the argument id leads to sql injection.

This vulnerability is traded as CVE-2024-36840. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-36840 | Boelter Blue System Management 1.3 news_details.php id sql injection

Post correlati

CVE-2024-7261 | Zyxel NWA1123ACv3/WAC500/WAX655E/WBE530/USG LITE 60AX Cookie host os command injection

CVE-2024-26084 | Adobe Experience Manager up to 6.5.19 Form Field cross site scripting (apsb24-21)

CVE-2024-10314 | Helix Core up to 2024.1 Auto-Generation resource consumption

CVE-2024-32924 | Google Android kernel cn_NrmmStateDeregInit.cpp DeregAcceptProcINT denial of service