Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'), CWE - 200 - Exposure of Sensitive Information to an Unauthorized Actor, CWE - 522 - Insufficiently Protected Credentials vulnerability in Magarsus Consultancy SSO (Single Sign On) allows SQL Injection.This issue affects SSO (Single Sign On): from 1.0 before 1.1.
INFO
Published Date :
2024-06-26T14:28:24.028Z
Last Modified :
2024-08-01T20:33:52.991Z
Source :
TR-CERT
AFFECTED PRODUCTS
The following products are affected by CVE-2024-4228 vulnerability.
No data.
REFERENCES
Here, you will find a curated list of external links that provide in-depth information to CVE-2024-4228.
| URL | Resource |
|---|---|
| https://www.usom.gov.tr/bildirim/tr-24-0800 |
|
CVSS Vulnerability Scoring System
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact