CVE-2024-35091 | J2EEFAST 2.7.0 SysTenantMapper.xml findPage sql injection

Inserito da Angelo Barbosa | Mag 23, 2024 | CVE

A vulnerability, which was classified as critical, was found in J2EEFAST 2.7.0. Affected is the function findPage of the file SysTenantMapper.xml. The manipulation leads to sql injection.

This vulnerability is traded as CVE-2024-35091. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-35091 | J2EEFAST 2.7.0 SysTenantMapper.xml findPage sql injection

Post correlati

CVE-2023-6881 | zephyrproject-rtos Zephyr up to 3.5 is_mount_point buffer overflow

CVE-2024-22397 | SonicWall SonicOS SSLVPN Portal cross site scripting (SNWLID-2024-0005)

VDB-263598 | Campcodes Complete Web-Based School Management System 1.0 my_student_exam_marks1.php year cross site scripting

CVE-2024-7453 | FastAdmin 1.5.0.20240328 Attachment Management Section 4 row[url]/row[imagewidth]/row[imageheight] cross site scripting