CVE-2025-24612

216.73.216.233

· Published 27/01/2025 14:15 · Modified 27/01/2025 14:15

Labels: CVE-2025-24612 2025-01-27 CVE-2025-24612 CWE-89 [email protected]

Essential information

Published: 27/01/2025 14:15
Modified: 27/01/2025 14:15
Author: —
Creator: —
CVSS: 9.3 CRITICAL (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L

CVSS metrics

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in MORKVA Shipping for Nova Poshta allows SQL Injection. This issue affects Shipping for Nova Poshta: from n/a through 1.19.6.

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

CVE-2025-24612

Essential information

CVSS metrics

Description

NVD status

References