4 matches found
CVE-2024-44542
SQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code via the /todesk.com/news.html parameter...
CVE-2024-44542
SQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code via the /todesk.com/news.html parameter...
CVE-2024-44542
SQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code via the /todesk.com/news.html parameter...
CVE-2024-44542
CVE-2024-44542 overview (normal mode) Affected software: todesk v1.1 (ToDesk remote desktop software). Vulnerability: SQL injection in the API endpoint /todesk.com/news.html that allows a remote attacker to craft inputs to execute arbitrary code. Root cause is a vulnerable parameter handling in t...