Vulnerability Details CVE-2024-38788
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bởi Admin 2020 UiPress lite allows SQL Injection.This issue affects UiPress lite: from n/a through 3.4.06.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.029
EPSS Ranking 85.8%
CVSS Severity
CVSS v3 Score 7.6
References
Products affected by CVE-2024-38788
-
cpe:2.3:a:uipress:uipress_lite:3.3.094
-
cpe:2.3:a:uipress:uipress_lite:3.3.1
-
cpe:2.3:a:uipress:uipress_lite:3.3.101
-
cpe:2.3:a:uipress:uipress_lite:3.4.0
-
cpe:2.3:a:uipress:uipress_lite:3.4.01
-
cpe:2.3:a:uipress:uipress_lite:3.4.03
-
cpe:2.3:a:uipress:uipress_lite:3.4.04
-
cpe:2.3:a:uipress:uipress_lite:3.4.05
-
cpe:2.3:a:uipress:uipress_lite:3.4.06