CVE-2024-57760 | JeeWMS 3.7 /core/CGReportDao.java ReportId sql injection

Inserito da Angelo Barbosa | Gen 15, 2025 | CVE

A vulnerability, which was classified as critical, has been found in JeeWMS 3.7. This issue affects some unknown processing of the file /core/CGReportDao.java. The manipulation of the argument ReportId leads to sql injection.

The identification of this vulnerability is CVE-2024-57760. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-57760 | JeeWMS 3.7 /core/CGReportDao.java ReportId sql injection

Post correlati

CVE-2024-29971 | Scontain SCONE 5.8.0 Signal injection

CVE-2024-2856 | Tenda AC10 16.03.10.13/16.03.10.20 /goform/SetSysTimeCfg fromSetSysTime timeZone stack-based overflow

CVE-2024-7091 | GitLab Community Edition/Enterprise Edition up to 17.0.4/17.1.2/17.2.0 information disclosure (Issue 408469)

CVE-2023-43304 | Park Dandan mini-app on Line 13.6.1 Channel Access Token information disclosure