CVE-2024-32369

Sažetak

SQL Injection vulnerability in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a remote attacker to obtain sensitive information via a crafted payload to the start and limit parameter in the mliWhiteList.php component.

Reference

https://cwe.mitre.org/data/definitions/89.html
https://github.com/chucrutis/CVE-2024-32369
https://cwe.mitre.org/data/definitions/89.html
https://github.com/chucrutis/CVE-2024-32369

CVSS

Base:	4.3
Impact:	1.4
Exploitability:	2.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
LOW	NONE	NONE

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Zadnje važnije ažuriranje

17-06-2025 - 20:17

Objavljeno

07-05-2024 - 15:15