CVE-2024-23843

LOW Year: 2024
CVSS v3 Score
2.2
Low
Weakness Type
CWE-89
View all →

Vulnerability Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Genians Genian NAC V5.0, Genians Genian NAC LTS V5.0.This issue affects Genian NAC V5.0: from V5.0.0 through V5.0.60; Genian NAC LTS V5.0: from 5.0.0 LTS through 5.0.55 LTS(Revision 125558), from 5.0.0 LTS through 5.0.56 LTS(Revision 125560).

Related Vulnerabilities

CVE-2024-51539

LOW
CVSS:2.3(Low)

The Dell Secure Connect Gateway (SCG) Application and Appliance, versions prior to 5.28, contains a SQL injection vulnerability due to improper neutralization of special elements used in an SQL comman...

CWE-892024

CVE-2019-15622

LOW
CVSS:2.4(Low)

Not strictly enough sanitization in the Nextcloud Android app 3.6.0 allowed an attacker to get content information from protected tables when using custom queries.

CWE-892019

CVE-2016-3046

LOW
CVSS:2.7(Low)

IBM Security Access Manager for Web is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements which could allow the attacker to view information in the back-end dat...

CWE-892016

CVE-2021-25109

LOW
CVSS:2.7(Low)

The Futurio Extra WordPress plugin before 1.6.3 is affected by a SQL Injection vulnerability that could be used by high privilege users to extract data from the database as well as used to perform Cro...

CWE-892021

CVE-2022-1684

LOW
CVSS:2.7(Low)

The Cube Slider WordPress plugin through 1.2 does not sanitise and escape the idslider parameter before using it in various SQL queries, leading to SQL Injections exploitable by high privileged users ...

CWE-892022

CVE-2022-1686

LOW
CVSS:2.7(Low)

The Five Minute Webshop WordPress plugin through 1.3.2 does not sanitise and escape the id parameter before using it in a SQL statement when editing a product via the admin dashboard, leading to an SQ...

CWE-892022