exploitDog

CVE-2024-45876

Опубликовано: 13 нояб. 2024

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

The login form of baltic-it TOPqw Webportal v1.35.283.2 (fixed in version 1.35.283.4) at /Apps/TOPqw/Login.aspx is vulnerable to SQL injection. The vulnerability exists in the POST parameter txtUsername, which allows for manipulation of SQL queries.

Ссылки

https://cyber.wtf/2024/11/11/topqw-webportal-cves/

EPSS

Процентиль: 26%

0.0009

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-v3h8-6499-8h5p

CVSS3: 6.5

github

около 1 года назад

The login form of baltic-it TOPqw Webportal v1.35.283.2 (fixed in version 1.35.283.4) at /Apps/TOPqw/Login.aspx is vulnerable to SQL injection. The vulnerability exists in the POST parameter txtUsername, which allows for manipulation of SQL queries.

EPSS

Процентиль: 26%

0.0009

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-89