CVE-2024-2724

Published: 2024-03-22T14:15Z

Last Modified: 2024-11-21T09:10Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

SQL injection vulnerability in the CIGESv2 system, through /ajaxServiciosAtencion.php, in the 'idServicio' parameter. The exploitation of this vulnerability could allow a remote user to retrieve all data stored in the database by sending a specially crafted SQL query. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt