2 matches found
CVE-2024-2074
creationtimestamp| type| source ---|---|--- 2024-03-01 19:31:31+00:00| seen| https://t.me/ctinow/197929 2024-03-01 19:31:36+00:00| seen| https://t.me/ctinow/197934...
CVE-2024-2074
CVE-2024-2074 affects Mini-Tmall (versions up to 20231017). The vulnerability is a SQL injection caused by manipulation of the orderBy parameter in the endpoint implemented as “?r=tmall/admin/user/1/1”. Evidence across Red Hat, NVD, CVE lists, and security feeds describes remote exploitation and ...