exploitDog

CVE-2024-8259

Опубликовано: 09 дек. 2024

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eryaz Information Technologies NatraCar B2B Dealer Management Program allows SQL Injection.This issue affects NatraCar B2B Dealer Management Program: through 09.12.2024.

NOTE: The vendor was contacted and it was learned that the product is not supported.

Ссылки

https://www.usom.gov.tr/bildirim/tr-24-1881

EPSS

Процентиль: 29%

0.00103

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-h3c8-cf53-m8j7

CVSS3: 6.5

github

около 1 года назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eryaz Information Technologies NatraCar B2B Dealer Management Program allows SQL Injection.This issue affects NatraCar B2B Dealer Management Program: through 09.12.2024. NOTE: The vendor was contacted and it was learned that the product is not supported.

EPSS

Процентиль: 29%

0.00103

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-89