Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2024-9201

Disclosure Date: October 10, 2024 (last updated October 17, 2024)
The SEUR plugin, in its versions prior to 2.5.11, is vulnerable to time-based SQL injection through the use of the ‘id_order’ parameter of the ‘/modules/seur/ajax/saveCodFee.php’ endpoint.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0