CVE-2024-53507 | Siyuan 3.1.11 /getHistoryItems sql injection (Issue 13057)

Posted by Angelo Barbosa | Nov 29, 2024 | CVE

A vulnerability was found in Siyuan 3.1.11. It has been classified as critical. Affected is an unknown function of the file /getHistoryItems. The manipulation leads to sql injection.

This vulnerability is traded as CVE-2024-53507. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-53507 | Siyuan 3.1.11 /getHistoryItems sql injection (Issue 13057)

Related Posts

CVE-2024-3617 | SourceCodester Kortex Lite Advocate Office Management System 1.0 deactivate_case.php id sql injection

CVE-2024-53674 | HPE Insight Remote Support prior 7.14.0.629 xml external entity reference

CVE-2024-49560 | Dell SmartFabric OS10 Software 10.5.4.x/10.5.5.x/10.5.6.x command injection (dsa-2024-425)

CVE-2024-53506 | Siyuan 3.1.11 /batchGetBlockAttrs ids sql injection (Issue 13060)