5 matches found
CVE-2024-57437
RuoYi v4.8.0 was discovered to contain a SQL injection vulnerability via the orderby parameter at /monitor/online/list...
CVE-2024-57437
creationtimestamp| type| source ---|---|--- 2025-01-29 14:20:14+00:00| seen| https://infosec.exchange/users/cve/statuses/113912080915386342 2025-01-29 15:15:41+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgvb67j2hl2p 2025-01-29 17:21:30+00:00| seen|...
CVE-2024-57437
RuoYi v4.8.0 was discovered to contain a SQL injection vulnerability via the orderby parameter at /monitor/online/list...
CVE-2024-57437
RuoYi (software) v4.8.0 contains a SQL injection vulnerability in the /monitor/online/list endpoint, exploitable via the orderby parameter. The CVE-2024-57437 entry lists a CVSS v3.1 base score of 6.5 (MEDIUM) with Network attack vector, low attack complexity, and privileges required. The impact ...
CVE-2024-57437
RuoYi v4.8.0 was discovered to contain a SQL injection vulnerability via the orderby parameter at /monitor/online/list...