Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RSM Design Website Template allows SQL Injection.This issue affects Website Template: before 1.2.
History

Fri, 27 Sep 2024 17:30:00 +0000

Type Values Removed Values Added
First Time appeared Rsm Design
Rsm Design web Template
CPEs cpe:2.3:a:rsm_design:web_template:*:*:*:*:*:*:*:*
Vendors & Products Rsm Design
Rsm Design web Template
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 27 Sep 2024 14:30:00 +0000

Type Values Removed Values Added
Description Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RSM Design Website Template allows SQL Injection.This issue affects Website Template: before 1.2.
Title SQLi in RSM Design's Website Template
Weaknesses CWE-89
References
Metrics cvssV4_0

{'score': 9.2, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:H/SI:L/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: TR-CERT

Published: 2024-09-27T14:14:16.232Z

Updated: 2024-09-27T16:18:57.238Z

Reserved: 2024-04-05T12:47:13.715Z

Link: CVE-2024-3373

cve-icon Vulnrichment

Updated: 2024-09-27T15:00:37.608Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-09-27T15:15:14.577

Modified: 2024-09-30T12:45:57.823

Link: CVE-2024-3373

cve-icon Redhat

No data.