Critical severity9.8NVD Advisory· Published Mar 20, 2024· Updated Jun 17, 2026
CVE-2024-28395
CVE-2024-28395
Description
SQL injection vulnerability in Best-Kit bestkit_popup v.1.7.2 and before allows a remote attacker to escalate privileges via the bestkit_popup.php component.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Best-Kit/bestkit_popupdescription
- Range: <=1.7.2
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.