CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2024-8607

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0540%
EPSS Percentile44.53th
Published2024年9月27日
Last Modified2026年6月2日

Vulnerability Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Oceanic Software ValeApp allows SQL Injection. This issue affects ValeApp: before v2.0.0.

Affected Platforms (CPE)

📦
Oceanicsoft

Valeapp

< 2.0.0

References & Advisories

🔗 https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1562
🔗 https://www.usom.gov.tr/bildirim/tr-24-1562

相關漏洞威脅

CVE-2024-86439.8

Session Fixation vulnerability in Oceanic Software ValeApp allows Brute Force, Session Hijacking. This issue affects ValeApp: bef...

CVE-2024-86097.5

Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information. T...

CVE-2024-86447.5

Cleartext Storage of Sensitive Information in a Cookie vulnerability in Oceanic Software ValeApp allows Protocol Manipulation, : J...

CVE-2024-86085.4

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Oceanic Software Vale...