CVE-2024-2480

CVE-2024-2480 affects MHA Sistemas arMHAzena 9.6.0.0, specifically the Executa Page component. The root cause is improper handling of the input argument “Companhia/Planta/Agente de/Agente até,” which enables a SQL injection when manipulated. The vulnerability is exploitable remotely and, accordin...

CVE-2024-2479

CVE-2024-2479 affects MHA Sistemas arMHAzena 9.6.0.0, specifically the Cadastro Page component. The issue is a cross-site scripting vulnerability caused by manipulation of the Query argument, which can be exploited remotely and has public writeups. Remediation details are not provided in the init...

MHA Sistemas arMHAzena Security Vulnerabilities

MHA Sistemas arMHAzena is a platform from MHA Sistemas USA. It allows for the centralized management of multiple sites and logistics operations at the same time. A security vulnerability exists in MHA Sistemas arMHAzena version 9.6.0.0, which stems from the parameter Query of the component Cadast...

PT-2024-20568 · Mha Sistemas · Mha Sistemas Armhazena

Name of the Vulnerable Software and Affected Versions: MHA Sistemas arMHAzena version 9.6.0.0 Description: A critical vulnerability was found in the Executa Page component, affecting unknown code. The manipulation of the Companhia/Planta/Agente de/Agente até argument leads to SQL injection. The...

PT-2024-20561 · Mha Sistemas · Mha Sistemas Armhazena

Name of the Vulnerable Software and Affected Versions: MHA Sistemas arMHAzena version 9.6.0.0 Description: A problematic vulnerability has been found in the Cadastro Page component, allowing for cross-site scripting through the manipulation of the Query argument. This issue can be exploited...