CVE-2024-0490 | Huaxia ERP up to 3.1 /user/getAllList information disclosure

Inserito da Angelo Barbosa | Gen 12, 2024 | CVE

A vulnerability was found in Huaxia ERP up to 3.1. It has been rated as problematic. This issue affects some unknown processing of the file /user/getAllList. The manipulation leads to information disclosure.

The identification of this vulnerability is CVE-2024-0490. The attack may be initiated remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2024-0490 | Huaxia ERP up to 3.1 /user/getAllList information disclosure

Post correlati

CVE-2024-3432 | PuneethReddyHC Event Management 1.0 /backend/register.php event_id/full_name/email/mobile/college/branch sql injection (ID 177841)

CVE-2024-22490 | beetl-bbs 2.0 /index keyword cross site scripting

CVE-2023-41503 | Student Enrollment In PHP 1.0 Login sql injection

CVE-2023-42823 | Apple macOS Log access control