What is CVE-2024-35584?

CVE-2024-35584 is a vulnerability in N/a. Published 2024-10-15.

Is CVE-2024-35584 known to be exploited?

5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2024-35584

SQL injection vulnerabilities were discovered in Ajax.php, ForWindow.php, ForExport.php, Modules.php, functions/HackingLogFnc.php in OpenSis Community Edition 9.1 to 8.0, and possibly earlier versions. It is possible for an authenticated u…

EPSS: 0.852 (99.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

whwhwh96/CVE-2024-35584
20142995/nuclei-templates
cyb3r-w0lf/nuclei-template-collection
fkie-cad/nvd-json-data-feeds
nomi-sec/PoC-in-GitHub

References

opensis.com
os4ed.com
github.com/whwhwh96/CVE-2024-35584

Frequently asked questions

What is CVE-2024-35584?: CVE-2024-35584 is a vulnerability in N/a. Published 2024-10-15.
Is CVE-2024-35584 known to be exploited?: 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.