CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-28421

SQL Injection vulnerability in Razor 0.8.0 allows a remote attacker to escalate privileges via the ChannelModel::updateapk method of the channelmodle.php

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.7%

CVSS Severity

CVSS v3 Score 9.8

References

https://gist.github.com/LioTree/003202727a61c0fb3ec3c948ab5e38f9
https://github.com/cobub/razor/issues/178
https://gist.github.com/LioTree/003202727a61c0fb3ec3c948ab5e38f9
https://github.com/cobub/razor/issues/178

Products affected by CVE-2024-28421

Cobub » Razor » Version: 0.8.0

cpe:2.3:a:cobub:razor:0.8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-28421

Products

Pricing

Contact Us