CyberSec.Space Logo
Back to CVE Browser

CVE-2024-8607

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0540%
EPSS Percentile44.53th
PublishedSep 27, 2024
Last ModifiedJun 2, 2026

Vulnerability Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Oceanic Software ValeApp allows SQL Injection. This issue affects ValeApp: before v2.0.0.

Affected Platforms (CPE)

📦
Oceanicsoft

Valeapp

< 2.0.0

References & Advisories

🔗 https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1562
🔗 https://www.usom.gov.tr/bildirim/tr-24-1562

Related Vulnerabilities

CVE-2024-86439.8

Session Fixation vulnerability in Oceanic Software ValeApp allows Brute Force, Session Hijacking. This issue affects ValeApp: bef...

CVE-2024-86097.5

Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information. T...

CVE-2024-86447.5

Cleartext Storage of Sensitive Information in a Cookie vulnerability in Oceanic Software ValeApp allows Protocol Manipulation, : J...

CVE-2024-86085.4

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Oceanic Software Vale...

CVE-2024-8607 Detail & Impact Analysis | CVSS 9.8 (CRITICAL) | Cyber-Sec.Space | Cyber-Sec.Space