Vulnerability Details CVE-2024-0342
A vulnerability classified as critical has been found in Inis up to 2.0.1. Affected is an unknown function of the file /app/api/controller/default/Sqlite.php. The manipulation of the argument sql leads to sql injection. The exploit has been disclosed to the public and may be used. VDB-250110 is the identifier assigned to this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.4%
CVSS Severity
CVSS v3 Score 6.3
CVSS v2 Score 5.8
Products affected by CVE-2024-0342
-
cpe:2.3:a:inis_project:inis:-
-
cpe:2.3:a:inis_project:inis:2.0.0
-
cpe:2.3:a:inis_project:inis:2.0.1