Back

CVE-2024-44430

Sept. 13, 2024, 8:15 p.m.

Received
CVE has been recently published to the CVE List and has been received by the NVD.

Products

Best Free Law Office Management Software

  • v1.0

Source

cve@mitre.org

Tags

cve@mitre.org
2024-09-13
CVE-2024-44430

CVE-2024-44430 details

Published : Sept. 13, 2024, 8:15 p.m.
Last Modified : Sept. 13, 2024, 8:15 p.m.

Description

SQL Injection vulnerability in Best Free Law Office Management Software-v1.0 allows an attacker to execute arbitrary code and obtain sensitive information via a crafted payload to the kortex_lite/control/register_case.php interface

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://blog.csdn.net/samwbs/article/details/140954482 cve@mitre.org
https://github.com/samwbs/kortexcve/blob/main/xss_register_case/XSS_register_case.md cve@mitre.org
This website uses the NVD API, but is not approved or certified by it.