CVE-2024-32736 | CyberPower PowerPanel Enterprise up to 2.8.2 MCUDBHelper query_utask_verbose sql injection

Posted by Angelo Barbosa | May 9, 2024 | CVE

A vulnerability, which was classified as critical, was found in CyberPower PowerPanel Enterprise up to 2.8.2. Affected is the function query_utask_verbose of the component MCUDBHelper. The manipulation leads to sql injection.

This vulnerability is traded as CVE-2024-32736. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-32736 | CyberPower PowerPanel Enterprise up to 2.8.2 MCUDBHelper query_utask_verbose sql injection

Related Posts

CVE-2023-51097 | Tenda W9 1.0.0.7(4456)_CN formSetAutoPing stack-based overflow

CVE-2023-6451 | AlayaCare Procura Portal up to 9.0.1.1 default key

CVE-2023-49779 | WESEEK GROWI up to 5.x Anchor Tag cross site scripting

CVE-2023-6304 | Tecno 4G Portable WiFi TR118 TR118-M30E-RR-D-EnFrArSwHaPo-OP-V008-20220830 Ping Tool goform_get_cmd_process url os command injection