The login functionality of WinMatrix3 Web package from Simopro Technology lacks proper validation of user input, allowing unauthenticated remote attackers to inject SQL commands to read, modify, and delete database contents.
Metrics
Affected Vendors & Products
References
History
Tue, 10 Sep 2024 21:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Simopro Technology
Simopro Technology winmatrix3 |
|
CPEs | cpe:2.3:a:simopro_technology:winmatrix3:*:*:*:*:*:*:*:* | |
Vendors & Products |
Simopro Technology
Simopro Technology winmatrix3 |
MITRE
Status: PUBLISHED
Assigner: twcert
Published: 2024-07-29T02:58:34.222Z
Updated: 2024-08-01T21:52:31.488Z
Reserved: 2024-07-29T01:58:28.191Z
Link: CVE-2024-7201
Vulnrichment
Updated: 2024-08-01T21:52:31.488Z
NVD
Status : Modified
Published: 2024-07-29T03:15:03.267
Modified: 2024-11-21T09:51:05.037
Link: CVE-2024-7201
Redhat
No data.