Metrics
Affected Vendors & Products
Wed, 21 Aug 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Springblade Project
Springblade Project springblade |
|
CPEs | cpe:2.3:a:springblade_project:springblade:4.1.0:*:*:*:*:*:*:* | |
Vendors & Products |
Springblade Project
Springblade Project springblade |
|
Metrics |
ssvc
|
Tue, 20 Aug 2024 23:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability classified as critical has been found in chillzhuang SpringBlade 4.1.0. Affected is an unknown function of the file /api/blade-system/menu/list?updatexml. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. | |
Title | chillzhuang SpringBlade list sql injection | |
Weaknesses | CWE-89 | |
References |
| |
Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published: 2024-08-20T23:31:05.010Z
Updated: 2024-08-21T13:41:36.426Z
Reserved: 2024-08-20T18:07:13.739Z
Link: CVE-2024-8023
Updated: 2024-08-21T13:41:28.223Z
Status : Awaiting Analysis
Published: 2024-08-21T00:15:05.527
Modified: 2024-08-21T12:30:33.697
Link: CVE-2024-8023
No data.