Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:33 a.m.13 views

CVE-2024-0890

A vulnerability was found in hongmaple octopus 1.0. It has been classified as critical. Affected is an unknown function of the file /system/dept/edit. The manipulation of the argument ancestors leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to...

9.8CVSS9.8AI score0.00657EPSS
Exploits1References1
OSV
OSV
added 2024/01/25 11:15 p.m.5 views

CVE-2024-0890

A vulnerability was found in hongmaple octopus 1.0. It has been classified as critical. Affected is an unknown function of the file /system/dept/edit. The manipulation of the argument ancestors leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to...

9.8CVSS5.8AI score0.00657EPSS
Exploits1References3
Prion
Prion
added 2024/01/25 11:15 p.m.17 views

Sql injection

A vulnerability was found in hongmaple octopus 1.0. It has been classified as critical. Affected is an unknown function of the file /system/dept/edit. The manipulation of the argument ancestors leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to...

6.5CVSS7.7AI score0.00657EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2024/01/25 10:31 p.m.48 views

CVE-2024-0890

Hongmaple Octopus 1.0 contains a SQL injection in the /system/dept/edit function triggered by manipulating the ancestors parameter. The vulnerability is exploitable remotely and can affect confidentiality, integrity, and availability. Public exploit discussion is present in the sources, but the p...

9.8CVSS9.7AI score0.00657EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/01/25 10:31 p.m.28 views

CVE-2024-0890 hongmaple octopus edit sql injection

A vulnerability was found in hongmaple octopus 1.0. It has been classified as critical. Affected is an unknown function of the file /system/dept/edit. The manipulation of the argument ancestors leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to...

6.5CVSS10AI score0.00657EPSS
Exploits1References3
Rows per page
Query Builder