Products
CRMEB
- 5.2.2
Source
cve@mitre.org
Tags
CVE-2024-36837 details
Published : June 5, 2024, 3:15 p.m.
Last Modified : June 5, 2024, 3:15 p.m.
Last Modified : June 5, 2024, 3:15 p.m.
Description
SQL Injection vulnerability in CRMEB v.5.2.2 allows a remote attacker to obtain sensitive information via the getProductList function in the ProductController.php file.
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
References
URL | Source |
---|---|
https://7nkdkj-my.sharepoint.com/:w:/g/personal/krypt0n_7nkdkj_onmicrosoft_com/Ea8dW8YuldRMqgCy7KHjnxABTJCVPLShHIJfqQk684mD3A?e=0qmN7t | cve@mitre.org |
This website uses the NVD API, but is not approved or certified by it.