CVE-2024-24015

2024-02-0600:00:00

mitre

www.cve.org

sql injection

novel-plus

crafted parameters

/sys/user/exit

security vulnerability

0.001 Low

EPSS

Percentile

33.0%

JSON

A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prior versions. An attacker can pass in crafted offset, limit, and sort parameters to perform SQL via /sys/user/exit

References

github.com/201206030/novel-plus

github.com/cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc/blob/main/cxcxcxcxcxc/about-2024/24015.txt

0.001 Low

EPSS

Percentile

33.0%

JSON

Related for CVELIST:CVE-2024-24015