CVE-2024-48814 | Silverpeas 6.4.1 findbywhereclause ViewType sql injection

Posted by Angelo Barbosa | Jan 3, 2025 | CVE

A vulnerability was found in Silverpeas 6.4.1. It has been rated as critical. Affected by this issue is the function findbywhereclause. The manipulation of the argument ViewType leads to sql injection.

This vulnerability is handled as CVE-2024-48814. The attack may be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-48814 | Silverpeas 6.4.1 findbywhereclause ViewType sql injection

Related Posts

CVE-2024-3581 | MaxGalleria Plugin up to 6.4.2 on WordPress authorization

CVE-2024-23904 | Log Command Plugin up to 1.0.2 on Jenkins args4j command path traversal

CVE-2024-26265 | Liferay Portal/DXP Image Uploader Module resource consumption

CVE-2024-41305 | WonderCMS 3.4.3 Plugins Page pluginThemeUrl server-side request forgery