CVE-2024-33146 | J2EEFAST 2.7.0 export sql_filter sql injection

Inserito da Angelo Barbosa | Mag 7, 2024 | CVE

A vulnerability was found in J2EEFAST 2.7.0. It has been rated as critical. Affected by this issue is the function export. The manipulation of the argument sql_filter leads to sql injection.

This vulnerability is handled as CVE-2024-33146. The attack may be launched remotely. There is no exploit available.

CVE-2024-33146 | J2EEFAST 2.7.0 export sql_filter sql injection

Post correlati

CVE-2024-9004 | D-Link DAR-7000 up to 20240912 Backup_Server_commit.php host os command injection (SAP10354)

CVE-2024-9823 | Eclipse Jetty up to 9.4.53/10.0.17/11.0.17/12.0.2 DosFilter resource consumption (ID 1256)

CVE-2024-47086 | Apex Softcell LD DP Back Office API Endpoint OTP authentication bypass by assumed-immutable data (CIVN-2024-0296)

CVE-2024-3704 | OpenGnsys 1.1.1d sql injection