Lucene search
K

7 matches found

Nuclei
Nuclei
added yesterday13 views

St. Joe ERP system - SQL Injection

A SQL injection vulnerability exists in the St. Joe ERP system "圣乔ERP系统" that allows unauthenticated remote attackers to execute arbitrary SQL commands via crafted HTTP POST requests to the login endpoint. The application fails to properly sanitize user-supplied input before incorporating it into...

9.8CVSS6.3AI score0.02899EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/08/30 6:16 p.m.4 views

CVE-2024-13979

A SQL injection vulnerability exists in the St. Joe ERP system "圣乔ERP系统" that allows unauthenticated remote attackers to execute arbitrary SQL commands via crafted HTTP POST requests to the login endpoint. The application fails to properly sanitize user-supplied input before incorporating it into...

9.8CVSS8.3AI score0.02899EPSS
Exploits1References1
NVD
NVD
added 2025/08/27 10:15 p.m.3 views

CVE-2024-13979

A SQL injection vulnerability exists in the St. Joe ERP system "圣乔ERP系统" that allows unauthenticated remote attackers to execute arbitrary SQL commands via crafted HTTP POST requests to the login endpoint. The application fails to properly sanitize user-supplied input before incorporating it into...

9.8CVSS0.02899EPSS
Exploits1References4
CVE
CVE
added 2025/08/27 9:27 p.m.21 views

CVE-2024-13979

CVE-2024-13979 refers to a SQL injection in the St. Joe ERP System. The vulnerability arises from insufficient input sanitization in the login endpoint, allowing unauthenticated remote attackers to craft HTTP POST requests that manipulate backend SQL queries. Impact per sources: unauthorized data...

9.8CVSS7.8AI score0.02899EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/27 9:27 p.m.2 views

CVE-2024-13979 St. Joe ERP System SingleRowQueryConverter SQL Injection

A SQL injection vulnerability exists in the St. Joe ERP system "圣乔ERP系统" that allows unauthenticated remote attackers to execute arbitrary SQL commands via crafted HTTP POST requests to the login endpoint. The application fails to properly sanitize user-supplied input before incorporating it into...

9.3CVSS7.8AI score0.02899EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/08/27 9:27 p.m.7 views

CVE-2024-13979 St. Joe ERP System SingleRowQueryConverter SQL Injection

A SQL injection vulnerability exists in the St. Joe ERP system "圣乔ERP系统" that allows unauthenticated remote attackers to execute arbitrary SQL commands via crafted HTTP POST requests to the login endpoint. The application fails to properly sanitize user-supplied input before incorporating it into...

9.3CVSS0.02899EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/08/27 12:0 a.m.4 views

PT-2025-34952

Name of the Vulnerable Software and Affected Versions: St. Joe ERP System affected versions not specified Description: A SQL injection vulnerability exists in the St. Joe ERP system "圣乔ERP系统" that allows unauthenticated remote attackers to execute arbitrary SQL commands via crafted HTTP POST...

9.8CVSS7.8AI score0.02899EPSS
Exploits1References11
Rows per page
Query Builder