CVE-2024-33147 | J2EEFAST 2.7.0 authRoleList sql_filter sql injection

Inserito da Angelo Barbosa | Mag 7, 2024 | CVE

A vulnerability has been found in J2EEFAST 2.7.0 and classified as critical. This vulnerability affects the function authRoleList. The manipulation of the argument sql_filter leads to sql injection.

This vulnerability was named CVE-2024-33147. The attack can be initiated remotely. There is no exploit available.

CVE-2024-33147 | J2EEFAST 2.7.0 authRoleList sql_filter sql injection

Post correlati

CVE-2023-28517 | IBM Sterling Partner Engagement Manager 6.1.2/6.2.0/6.2.2 Web UI cross site scripting (XFDB-250421)

CVE-2023-36268 | Document Foundation LibreOffice 7.4.7 PPT File denial of service

CVE-2024-50097 | Linux Kernel up to 6.6.56/6.11.3/6.12-rc1 fec_ptp_init initialization (7745e14f4c03/3192e8d4a1ef/6be063071a45)

CVE-2024-9328 | SourceCodester Advocate Office Management System 1.0 /control/edit_client.php id sql injection