CVE-2024-52495 - CERT CVE
ID CVE-2024-52495
Sažetak Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eniture Technology Distance Based Shipping Calculator allows SQL Injection.This issue affects Distance Based Shipping Calculator: from n/a through 2.0.21.
Reference
CVSS
Base: 8.5
Impact: 4.7
Exploitability:3.1
Pristup
VektorSloženostAutentikacija
NETWORK LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
HIGH NONE LOW
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L
Zadnje važnije ažuriranje 28-11-2024 - 11:15
Objavljeno 28-11-2024 - 11:15