5 matches found
CVE-2024-22856
A SQL injection vulnerability via the Save Favorite Search function in Axefinance Axe Credit Portal = v.3.0 allows authenticated attackers to execute unintended queries and disclose sensitive information from DB tables via crafted requests...
CVE-2024-22856
A SQL injection vulnerability via the Save Favorite Search function in Axefinance Axe Credit Portal = v.3.0 allows authenticated attackers to execute unintended queries and disclose sensitive information from DB tables via crafted requests...
CVE-2024-22856
A SQL injection vulnerability via the Save Favorite Search function in Axefinance Axe Credit Portal = v.3.0 allows authenticated attackers to execute unintended queries and disclose sensitive information from DB tables via crafted requests...
Axefinance Ax Credit Portal SQL注入漏洞
Axefinance Axe Credit Portal is an AI-based end-to-end LOS from Axefinance. An SQL injection vulnerability exists in Axefinance Ax Credit Portal v.3.0 and later versions, which stems from a security issue in the Save Favorites Search feature that allows an authenticated attacker to perform...
PT-2024-19588 · Unknown · Axe Credit Portal
Name of the Vulnerable Software and Affected Versions: Axe Credit Portal versions 3.0 and later Description: The issue allows authenticated attackers to execute unintended queries and disclose sensitive information from database tables via crafted requests, specifically through the Save Favorite...