CVE-2024-29872 | Sentrifugo 3.2 add agencyids sql injection

Posted by Angelo Barbosa | Mar 21, 2024 | CVE

A vulnerability was found in Sentrifugo 3.2. It has been rated as critical. This issue affects some unknown processing of the file through /sentrifugo/index.php/empscreening/add. The manipulation of the argument agencyids leads to sql injection.

The identification of this vulnerability is CVE-2024-29872. The attack may be initiated remotely. There is no exploit available.

CVE-2024-29872 | Sentrifugo 3.2 add agencyids sql injection

Related Posts

CVE-2024-32879 | python-social-auth social-app-django up to 5.4.0 case sensitivity

CVE-2024-26022 | Intel UEFI Integrator Tools on Aptio V for Intel NUC access control (intel-sa-01172)

CVE-2023-4553 | OpenText AppBuilder up to 23.1 Configuration File information disclosure

CVE-2023-6239 | M-Files Server 23.9/23.10/23.11 Configuration permissions