Security Advisory

CVE-2024-45875

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-13 00:00:00

Last updated 2024-11-21 21:51:11

Assigner mitre

State PUBLISHED

Description

The create user function in baltic-it TOPqw Webportal 1.35.287.1 (fixed in version1.35.291), in /Apps/TOPqw/BenutzerManagement.aspx/SaveNewUser, is vulnerable to SQL injection. The JSON object username allows the manipulation of SQL queries.

← Browse all CVEs View on cve.org ↗