CVE-2024-9560 | ESAFENET CDG V5 Catelogs;logindojojs delCatelogs id sql injection

Posted by Angelo Barbosa | Oct 6, 2024 | CVE

A vulnerability was found in ESAFENET CDG V5. It has been rated as critical. Affected by this issue is the function delCatelogs of the file /CDGServer3/document/Catelogs;logindojojs?command=DelCatelogs. The manipulation of the argument id leads to sql injection.

This vulnerability is handled as CVE-2024-9560. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-9560 | ESAFENET CDG V5 Catelogs;logindojojs delCatelogs id sql injection

Related Posts

CVE-2024-3909 | Tenda AC500 2.0.1.9(1307) /goform/execCommand formexeCommand cmdinput stack-based overflow

CVE-2024-0537 | Tenda W9 1.0.0.7(4456) httpd setWrlBasicInfo ssidIndex stack-based overflow

CVE-2024-22648 | SEO Panel 4.10.0 Crawl Meta Data server-side request forgery

CVE-2024-35170 | Hidden Depth Sticky banner Plugin up to 1.2.0 on WordPress cross site scripting