Lucene search
K

4 matches found

NVD
NVD
added 2024/03/22 2:15 p.m.10 views

CVE-2024-2724

SQL injection vulnerability in the CIGESv2 system, through /ajaxServiciosAtencion.php, in the 'idServicio' parameter. The exploitation of this vulnerability could allow a remote user to retrieve all data stored in the database by sending a specially crafted SQL query...

9.8CVSS9.7AI score0.00684EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/22 1:34 p.m.12 views

CVE-2024-2724 SQL injection vulnerability in the CIGESv2 system

SQL injection vulnerability in the CIGESv2 system, through /ajaxServiciosAtencion.php, in the 'idServicio' parameter. The exploitation of this vulnerability could allow a remote user to retrieve all data stored in the database by sending a specially crafted SQL query...

9.8CVSS7.6AI score0.00684EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/22 1:34 p.m.14 views

CVE-2024-2724 SQL injection vulnerability in the CIGESv2 system

SQL injection vulnerability in the CIGESv2 system, through /ajaxServiciosAtencion.php, in the 'idServicio' parameter. The exploitation of this vulnerability could allow a remote user to retrieve all data stored in the database by sending a specially crafted SQL query...

9.8CVSS9.8AI score0.00684EPSS
Exploits0References1
CVE
CVE
added 2024/03/22 1:34 p.m.62 views

CVE-2024-2724

CVE-2024-2724 affects the CIGESv2 system via SQL injection in the /ajaxServiciosAtencion.php endpoint, in the idServicio parameter. A remote attacker could use a crafted SQL query to retrieve all data from the database. Documented impact is data exposure (Confidentiality: HIGH); no exploits are d...

9.8CVSS9.7AI score0.00684EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder