CVE-2024-51164 | JEPaaS 7.2.8 Query insertBtnLog sql injection

Posted by Angelo Barbosa | Nov 15, 2024 | CVE

A vulnerability, which was classified as critical, was found in JEPaaS 7.2.8. This affects an unknown part of the file /je/login/btnLog/insertBtnLog of the component Query Handler. The manipulation leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-51164. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-51164 | JEPaaS 7.2.8 Query insertBtnLog sql injection

Related Posts

CVE-2023-52071 | cURL up to 8.3.x on Windows src/tool_cb_wrt.c tool_cb_wrt array index

CVE-2023-49172 | BrainCert Plugin up to 1.30 on WordPress cross site scripting

CVE-2024-27958 | Themeisle Visualizer Plugin up to 3.10.5 on WordPress cross site scripting

CVE-2024-7581 | Tenda A301 15.13.08.12 /goform/WifiBasicSet formWifiBasicSet security stack-based overflow