CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

I-Doit: >> I-Doit >> 28 Security Vulnerabilities

CVE-2024-8750

Cross-site Scripting (XSS) vulnerability in idoit pro version 28. This vulnerability allows an attacker to retrieve session details of an authenticated user due to lack of proper sanitization of the following parameters (id,lang,mNavID,name,pID,treeNode,type,view).

CVSS Score

5.4

EPSS Score

0.001

Published

2024-09-12

CVE-2024-8749

SQL injection vulnerability in idoit pro version 28. This vulnerability could allow an attacker to send a specially crafted query to the ID parameter in /var/www/html/src/classes/modules/api/model/cmdb/isys_api_model_cmdb_objects_by_relation.class.php and retrieve all the information stored in the database.

CVSS Score

8.8

EPSS Score

0.001

Published

2024-09-12

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved