CVE-2024-42760 | Ellevo 6.2.0.38160 destinatarios sql injection

Posted by Angelo Barbosa | Sep 11, 2024 | CVE

A vulnerability was found in Ellevo 6.2.0.38160. It has been rated as critical. Affected by this issue is some unknown functionality of the file /api/mob/instrucao/conta/destinatarios. The manipulation leads to sql injection.

This vulnerability is handled as CVE-2024-42760. The attack may be launched remotely. There is no exploit available.

CVE-2024-42760 | Ellevo 6.2.0.38160 destinatarios sql injection

Related Posts

CVE-2023-49956 | Dalmann OCPP.Core up to 1.2.x StopTransaction Message random values

CVE-2021-47049 | Linux Kernel up to 5.10.36/5.11.20/5.12.3 vmbus __vmbus_open use after free

CVE-2024-38821 | Vmware Spring Security up to 6.3.3 WebFlux improper authorization

CVE-2024-8517 | SPIP up to 4.1.18/4.2.15/4.3.1 Multipart File Upload reliance on file name or extension of externally-supplied file