8 matches found
EUVD-2024-30909
Malicious code in bioql PyPI...
CVE-2024-33164
J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the authUserList function...
J2EEFAST authUserList Function SQL Injection Vulnerability
J2eeFAST is a Java EE enterprise-class rapid development platform , is committed to building the best small and medium-sized open source free back-end framework platform . J2EEFAST v2.7.0 version exists SQL injection vulnerability , the vulnerability stems from the authUserList function in the...
CVE-2024-33164
J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the authUserList function...
CVE-2024-33164
J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the authUserList function...
CVE-2024-33164
J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the authUserList function...
CVE-2024-33164
CVE-2024-33164 affects J2EEFAST v2.7.0. A SQL injection in authUserList() via the sql_filter parameter is reported, with CVSS 3.1 base score 9.8 (CRITICAL). Impact: potentially arbitrary SQL execution and data leakage; network access, no user interaction required. Some sources note mitigations su...
CVE-2024-33164
J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sqlfilter parameter in the authUserList function...