CVE-2024-22856
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-22856
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A SQL injection vulnerability via the Save Favorite Search function in Axefinance Axe Credit Portal >= v.3.0 allows authenticated attackers to execute unintended queries and disclose sensitive information from DB tables via crafted requests.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Axefinance Ax Credit Portal SQL注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Axefinance Axe Credit Portal是Axefinance公司的一个基于人工智能的端到端 LOS。 Axefinance Ax Credit Portal v.3.0及之后版本存在SQL注入漏洞,该漏洞源于保存收藏夹搜索功能中存在安全问题,允许经过身份验证的攻击者执行意外查询,并通过特制的请求泄露数据库表中的敏感信息。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2024-22856
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-22856
请登录查看更多情报信息。
Same Patch Batch · n/a · 2024-04-22 · 44 CVEs total
| CVE-2023-38299 | 多款产品 安全漏洞 | |
| CVE-2023-38302 | flask-cors 安全漏洞 | |
| CVE-2023-38290 | com.evenwell.fqc 安全漏洞 | |
| CVE-2023-38296 | TCL 安全漏洞 | |
| CVE-2023-38295 | Tcl 安全漏洞 | |
| CVE-2023-38294 | Itel Vision 3 Turbo 安全漏洞 | |
| CVE-2023-38291 | TCL 20XE和TCL 10L 安全漏洞 | |
| CVE-2023-38292 | TCL 20XE 安全漏洞 | |
| CVE-2023-38298 | TCL 安全漏洞 | |
| CVE-2023-38293 | Nokia C100 安全漏洞 | |
| CVE-2023-38300 | Verizon Orbic Maui 安全漏洞 | |
| CVE-2023-38301 | vendor.gsm.serial 安全漏洞 | |
| CVE-2022-34561 | phpFox 跨站脚本漏洞 | |
| CVE-2022-34560 | phpFox 安全漏洞 | |
| CVE-2022-34562 | phpFox 跨站脚本漏洞 | |
| CVE-2022-46897 | 编号已被CVE保留 | |
| CVE-2022-35503 | Open Source MANO 安全漏洞 | |
| CVE-2024-27574 | Trainme Academy 安全漏洞 | |
| CVE-2024-29661 | Desdev DedeCMS 安全漏洞 | |
| CVE-2024-29368 | moziloCMS 安全漏洞 |
Showing top 20 of 44 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2024-22856
No comments yet