CVE-2024-35085 | J2EEFAST 2.7.0 ProcessDefinitionMapper.xml findPage sql injection

Inserito da Angelo Barbosa | Mag 23, 2024 | CVE

A vulnerability was found in J2EEFAST 2.7.0 and classified as critical. Affected by this issue is the function findPage of the file ProcessDefinitionMapper.xml. The manipulation leads to sql injection.

This vulnerability is handled as CVE-2024-35085. The attack may be launched remotely. There is no exploit available.

CVE-2024-35085 | J2EEFAST 2.7.0 ProcessDefinitionMapper.xml findPage sql injection

Post correlati

CVE-2024-2729 | Otter Blocks Plugin up to 2.6.5 on WordPress cross site scripting

CVE-2024-2970 | tsina News Wall Plugin up to 1.1.0 on WordPress Setting nwap_newslist_page cross-site request forgery

CVE-2023-49810 | WWBN AVideo 15fed957fb HTTP Request checkLoginAttempts excessive authentication (TALOS-2023-1898)

CVE-2024-26617 | Linux Kernel up to 6.7.2 MMU Notifications fs/proc/task_mmu race condition (05509adf2979/4cccb6221cae)