CVE-2024-57151
Essential information
- Published
- 18/03/2025 21:15
- Modified
- 18/03/2025 21:15
- Author
- —
- Creator
- —
- CISA KEV
- No
- CWE
- —
- CVSS vector
- — — —
Description
SQL Injection vulnerability in rainrocka xinhu v.2.6.5 and before allows a remote attacker to execute arbitrary code via the inputAction.php file and the saveAjax function
NVD status
- Status
- Received — CVE has been recently published to the CVE List and has been received by the NVD.
- Source
- [email protected]
- NVD
- View on NVD
Affected products (CPE)
| Product | CPE |
|---|---|
| rainrocka / xinhu | cpe:2.3:a:rainrocka:xinhu:2.6.5:*:*:*:*:*:*:* |