CVE-2024-53504 | Siyuan 3.1.11 /searchHistory notebook sql injection (Issue 13058)

Inserito da Angelo Barbosa | Nov 29, 2024 | CVE

A vulnerability was found in Siyuan 3.1.11. It has been rated as critical. Affected by this issue is some unknown functionality of the file /searchHistory. The manipulation of the argument notebook leads to sql injection.

This vulnerability is handled as CVE-2024-53504. The attack may be launched remotely. There is no exploit available.

CVE-2024-53504 | Siyuan 3.1.11 /searchHistory notebook sql injection (Issue 13058)

Post correlati

CVE-2023-48958 | GPAC 2.3-DEV-rev617-g671976fcc-master media_tools/mpd.c gf_mpd_resolve_url memory leak

CVE-2024-20359 | Cisco ASA/Firepower Threat Defense Legacy Capability code injection (cisco-sa-asaftd-persist-rce-FLsNXF4h)

CVE-2024-22550 | ShopSite 14.0 SVG File /alsdemo/ss/mediam.cgi unrestricted upload (ID 176312)

CVE-2023-6218 | Progress MOVEit Transfer up to 14.0.8/14.1.9/15.0.6 privileges management