CVE-2024-9925 [CRITICAL] :

SQL injection vulnerability in TAI Smart Factory's QPLANT SF version 1.0. Exploitation of this vulnerability could allow a remote attacker to retrieve all database information by sending a specially crafted SQL query to the ‘email’ parameter on the ‘RequestPasswordChange’ endpoint.

DFRLab

blog
forensics

The Digital Forensic Research Lab (DFRLab) has expertise on disinformation, connective technologies, democracy, and digital rights.

Visit Website

Listed: Tue Sep 24 2024