Vulnerability CVE-2024-6743
Published: 2024-07-15

Description:
AguardNet's Space Management System does not properly validate user input, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.

Type:

CWE-89

 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

 References:
https://www.twcert.org.tw/tw/cp-132-7932-a6d4d-1.html
https://www.twcert.org.tw/en/cp-139-7933-9a38d-2.html
Copyright 2024, cxsecurity.com

 

Back to Top