SQL Injection Vulnerability in Funadmin v5.0.2 by Funadmin

CVE-2024-48223

What is CVE-2024-48223?

An SQL injection vulnerability has been identified in Funadmin version 5.0.2, specifically in the '/curd/table/fieldlist' endpoint. This security flaw could allow an attacker to manipulate database queries by injecting arbitrary SQL code. Successful exploitation may lead to unauthorized access to sensitive data, corruption of the database, and potential system compromise, making it critical for users of the affected version to apply relevant patches or updates promptly.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References