CVE-2024-0655
CVE-2024-0655 affects Novel-Plus 4.3.0-RC1. Affected component: /novel/bookSetting/list; the vulnerability arises from improper handling of the sort parameter, enabling SQL injection. Public exploitation is indicated across multiple sources (NVD entry, Red Hat, OSV, and third-party advisories). C...