CVE-2024-50706

Critical CVSS: 9.8

Unauthenticated SQL injection vulnerability in Uniguest Tripleplay version 23.1+ allows remote attackers to execute arbitrary SQL queries on the backend database.

Vendor

Uniguest

Product

Tripleplay

CWE

CWE-89

Yayın Tarihi

2025-03-04 15:15:19

Güncelleme

2025-05-28 17:26:19

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-89 Tripleplay CRITICAL Uniguest 2025

Referanslar

https://uniguest.com/cve-bulletins/ https://uniguest.com/wp-content/uploads/2025/02/CVE-2024-50706-Vulnerability-Summary.pdf

Benzer Kayıtlar

Critical

CVE-2024-50704

Unauthenticated remote code execution vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to exec…

Critical

CVE-2024-50707

Unauthenticated remote code execution vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to exec…

High

CVE-2024-50705

Unauthenticated reflected cross-site scripting (XSS) vulnerability in Uniguest Tripleplay before 24.2.1 allows remote at…