Security Advisory

CVE-2024-6527

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-09 13:30:44

Last updated 2024-08-01 21:41:03

Assigner CERT-PL

State PUBLISHED

Description

SQL Injection vulnerability in parameter "w" in file "druk.php" in MegaBIP software allows unauthorized attacker to disclose the contents of the database and obtain administrators token to modify the content of pages. This issue affects MegaBIP software versions through 5.13.

← Browse all CVEs View on cve.org ↗