CVE-2024-29725 | SportsNET 4.0.1 /app/ax/sort_bloques/ list sql injection

Inserito da Angelo Barbosa | Ago 29, 2024 | CVE

A vulnerability was found in SportsNET 4.0.1. It has been classified as critical. Affected is an unknown function of the file /app/ax/sort_bloques/. The manipulation of the argument list leads to sql injection.

This vulnerability is traded as CVE-2024-29725. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-29725 | SportsNET 4.0.1 /app/ax/sort_bloques/ list sql injection

Post correlati

CVE-2024-21834 | OpenHarmony up to 3.2.4 type confusion

CVE-2024-34062 | tqdm up to 4.66.2 injection (GHSA-g7vv-2v7x-gj9p)

CVE-2024-9467 | Palo Alto Expedition up to 1.2.95 cross site scripting

CVE-2024-23521 | Happyforms Plugin up to 1.25.10 on WordPress authorization