CVE-2024-0342 | Inis up to 2.0.1 Sqlite.php sql sql injection

Inserito da Angelo Barbosa | Gen 9, 2024 | CVE

A vulnerability classified as critical has been found in Inis up to 2.0.1. Affected is an unknown function of the file /app/api/controller/default/Sqlite.php. The manipulation of the argument sql leads to sql injection.

This vulnerability is traded as CVE-2024-0342. The attack needs to be approached within the local network. Furthermore, there is an exploit available.

CVE-2024-0342 | Inis up to 2.0.1 Sqlite.php sql sql injection

Post correlati

CVE-2022-48618 | Apple iOS/iPadOS improper authentication

CVE-2024-30883 | RageFrame2 2.6.43 aspectRatio cross site scripting (Issue 114)

CVE-2024-1823 | CodeAstro Simple Voting System 1.0 Backend users.php access control

CVE-2024-34155 | Google Go up to 1.22.6/1.23.0 go-parser Parse resource consumption