Critical severity9.8NVD Advisory· Published Jul 16, 2024· Updated Jun 17, 2026
CVE-2024-40456
CVE-2024-40456
Description
ThinkSAAS v3.7.0 was discovered to contain a SQL injection vulnerability via the name parameter at \system\action\update.php.
Affected products
2- ThinkSAAS/ThinkSAASdescription
Patches
Vulnerability mechanics
References
1- www.notion.so/ThinkSAAS-administrator-backend-SQL-injection-3a5c8c72fc374446892f8dc81ec94923nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.