VYPR
Critical severity9.8NVD Advisory· Published Aug 29, 2024· Updated Jun 17, 2026

CVE-2024-29724

CVE-2024-29724

Description

SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could allow an attacker to retrieve, update and delete all information in the database by sending a specially crafted SQL query: https://XXXXXXX.saludydesafio.com/ax/registerSp/, parameter idDesafio.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • SportsNET/SportsNETllm-fuzzy2 versions
    = 4.0.1+ 1 more
    • (no CPE)range: = 4.0.1
    • (no CPE)range: 4.0.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.