High severity8.1NVD Advisory· Published Mar 6, 2025· Updated Jun 17, 2026
CVE-2024-42844
CVE-2024-42844
Description
A SQL Injection vulnerability has been identified in EPICOR Prophet 21 (P21) up to 23.2.5232. This vulnerability allows authenticated remote attackers to execute arbitrary SQL commands through unsanitized user input fields to obtain unauthorized information
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=23.2.5232
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.