Security Advisory

CVE-2024-36840

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-12 00:00:00

Last updated 2024-08-02 03:43:49

Assigner mitre

State PUBLISHED

Description

SQL Injection vulnerability in Boelter Blue System Management v.1.3 allows a remote attacker to execute arbitrary code and obtain sensitive information via the id parameter to news_details.php and location_details.php; and the section parameter to services.php.

← Browse all CVEs View on cve.org ↗