Lucene search
K

4 matches found

OSV
OSV
added 2024/01/19 9:15 p.m.4 views

CVE-2024-0734

A vulnerability was found in Smsot up to 2.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /get.php. The manipulation of the argument tid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the...

9.8CVSS5.7AI score0.005EPSS
Exploits0References3
Prion
Prion
added 2024/01/19 9:15 p.m.18 views

Sql injection

A vulnerability was found in Smsot up to 2.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /get.php. The manipulation of the argument tid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the...

6.5CVSS7.7AI score0.005EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/01/19 8:31 p.m.30 views

CVE-2024-0734 Smsot get.php sql injection

A vulnerability was found in Smsot up to 2.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /get.php. The manipulation of the argument tid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the...

6.5CVSS10AI score0.005EPSS
Exploits0References3
CVE
CVE
added 2024/01/19 8:31 p.m.41 views

CVE-2024-0734

Smsot up to 2.12 contains a SQL injection in the get.php endpoint triggered by manipulating the tid parameter. The vulnerability arises from an insecure handling of tid, enabling remote exploitation. According to multiple sources, this affects Smsot versions up to 2.12 and can impact confidential...

9.8CVSS9.7AI score0.005EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder