exploitDog

CVE-2024-42844

Опубликовано: 06 мар. 2025

Источник: nvd

CVSS3: 8.1

EPSS Низкий

Описание

A SQL Injection vulnerability has been identified in EPICOR Prophet 21 (P21) up to 23.2.5232. This vulnerability allows authenticated remote attackers to execute arbitrary SQL commands through unsanitized user input fields to obtain unauthorized information

Ссылки

https://gist.github.com/getHecked/dc4ae46526d181d3deb17092815b9bec

EPSS

Процентиль: 22%

0.00073

Низкий

8.1 High

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-2q7g-85wh-78fq

CVSS3: 8.1

github

11 месяцев назад

A SQL Injection vulnerability has been identified in EPICOR Prophet 21 (P21) up to 23.2.5232. This vulnerability allows authenticated remote attackers to execute arbitrary SQL commands through unsanitized user input fields to obtain unauthorized information

EPSS

Процентиль: 22%

0.00073

Низкий

8.1 High

CVSS3

Дефекты

CWE-89