A SQL Injection vulnerability in "ccHandler.aspx" in all versions of CADClick v.1.11.0 and before allows remote attackers to execute arbitrary SQL commands via the "bomid" parameter.
Metrics
Affected Vendors & Products
References
History
Mon, 07 Oct 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Cadclick
Cadclick cadclick |
|
Weaknesses | CWE-89 | |
CPEs | cpe:2.3:a:cadclick:cadclick:*:*:*:*:*:*:*:* | |
Vendors & Products |
Cadclick
Cadclick cadclick |
|
Metrics |
cvssV3_1
|
Fri, 04 Oct 2024 20:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Fri, 04 Oct 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A SQL Injection vulnerability in "ccHandler.aspx" in all versions of CADClick v.1.11.0 and before allows remote attackers to execute arbitrary SQL commands via the "bomid" parameter. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-10-04T00:00:00
Updated: 2024-10-04T20:40:34.963521
Reserved: 2024-07-18T00:00:00
Link: CVE-2024-41512
Vulnrichment
Updated: 2024-10-04T18:53:14.809Z
NVD
Status : Awaiting Analysis
Published: 2024-10-04T18:15:08.153
Modified: 2024-10-07T19:37:09.920
Link: CVE-2024-41512
Redhat
No data.