Lucene search
TR-CERTVULNRICHMENT:CVE-2024-5958HistorySep 18, 2024 - 2:42 p.m.
CVE-2024-5958 SQLi in Eliz Software's Panel
2024-09-1814:42:04
CWE-89
TR-CERT
github.com
1
cve-2024-5958
sql injection
eliz software panel
CVSS4
9.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/SC:H/VI:H/SI:H/VA:H/SA:H
AI Score
7.4
Confidence
High
EPSS
0.001
Percentile
20.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Eliz Software Panel allows Command Line Execution through SQL Injection.This issue affects Panel: before v2.3.24.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:eliz_software:panel:*:*:*:*:*:*:*:*"
],
"vendor": "eliz_software",
"product": "panel",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "2.3.24",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
}
]References
Related
cvelist
cvelist
CVE-2024-5958 SQLi in Eliz Software's Panel
2024-09-18 14:42:04
nvd
nvd
CVE-2024-5958
2024-09-18 15:15:18
cve
cve
CVE-2024-5958
2024-09-18 15:15:18
CVSS4
9.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/SC:H/VI:H/SI:H/VA:H/SA:H
AI Score
7.4
Confidence
High
EPSS
0.001
Percentile
20.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2024-5958