Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-48072

Nov. 19, 2024, 9:56 p.m.

Tags

cve@mitre.org
2024-11-19
CVE-2024-48072

Product(s) Impacted

Weaver Ecology

  • 9.*

Description

Weaver Ecology v9.* was discovered to contain a SQL injection vulnerability via the component /mobilemode/Action.jsp?invoker=com.weaver.formmodel.mobile.mec.servlet.MECAction&action=getFieldTriggerValue&searchField=*&fromTable=HrmResourceManager&whereClause=1%3d1&triggerCondition=1&expression=%3d&fieldValue=1.

Weaknesses

Date

Published: Nov. 19, 2024, 6:15 p.m.

Last Modified: Nov. 19, 2024, 9:56 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://gist.github.com/ cve@mitre.org
https://github.com/ cve@mitre.org