CVE-2024-55971 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

SQL Injection vulnerability in the default configuration of the Logitime WebClock application
Critical CVSS: 10.0

CVE-2024-55971

SQL Injection vulnerability in the default configuration of the Logitime WebClock application <= 5.43.0 allows an unauthenticated user to run arbitrary code on the backend database server.
Vendor
-
Product
-
CWE
CWE-89
Yayın Tarihi
2025-01-23 16:15:36
Güncelleme
2026-04-15 00:35:42
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-89 CRITICAL 2025

Referanslar

https://en.logitime.com/time-attendance/ https://nl.logitime.com/ https://nl.logitime.com/download/webclock-v5-43-0-13-12-2024/ https://tulling.dev/disclosures/cve-2024-55971/