CVE-2024-26264
CVE-2024-26264 concerns EBM Technologies RISWEB, where a specific query function parameter does not properly restrict input and the page is accessible without login. This enables remote SQL injection without authentication, allowing an attacker to read, modify, and delete database records. The co...