CVE-2024-48238 - CERT CVE
ID CVE-2024-48238
Sažetak WTCMS 1.0 is vulnerable to SQL Injection in the edit_post method of /Admin\Controller\NavControl.class.php via the parentid parameter.
Reference
CVSS
Base: 4.7
Impact: 3.4
Exploitability:1.2
Pristup
VektorSloženostAutentikacija
NETWORK LOW HIGH
Impact
PovjerljivostCjelovitostDostupnost
LOW LOW LOW
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
Zadnje važnije ažuriranje 29-10-2024 - 19:35
Objavljeno 25-10-2024 - 22:15