2 matches found
CVE-2024-28395
SQL injection vulnerability in Best-Kit bestkitpopup v.1.7.2 and before allows a remote attacker to escalate privileges via the bestkitpopup.php component...
PT-2024-22415 · Best Kit · Bestkit Popup
Name of the Vulnerable Software and Affected Versions: Best-Kit bestkit popup versions 1.7.2 and earlier Description: The issue allows a remote attacker to escalate privileges via the bestkit popup.php component. This is due to a SQL injection vulnerability. Recommendations: For Best-Kit bestkit...