CVE-2024-25532 | RuvarOA 6.01/12.01 /include/get_dict.aspx bt_id sql injection

Inserito da Angelo Barbosa | Mag 8, 2024 | CVE

A vulnerability was found in RuvarOA 6.01/12.01. It has been rated as critical. This issue affects some unknown processing of the file /include/get_dict.aspx. The manipulation of the argument bt_id leads to sql injection.

The identification of this vulnerability is CVE-2024-25532. The attack may be initiated remotely. There is no exploit available.

CVE-2024-25532 | RuvarOA 6.01/12.01 /include/get_dict.aspx bt_id sql injection

Post correlati

CVE-2023-7132 | code-projects Intern Membership Management System 2.0 User Registration /user_registration/ userName/firstName/lastName/userEmail cross site scripting

CVE-2024-3034 | BackUpWordPress Plugin up to 3.13 on WordPress path traversal

CVE-2023-6273 | Huawei HarmonyOS/EMUI Sound Booster privileges management

CVE-2024-4209 | Kadence Gutenberg Blocks Plugin up to 3.2.36 on WordPress Countdown Timer cross site scripting