Unrated severityNVD Advisory· Published Oct 7, 2024· Updated Mar 27, 2025
SQL Injection vulnerability in SOPlanning
CVE-2024-9574
Description
SQL injection vulnerability in SOPlanning <1.45, via /soplanning/www/user_groupes.php in the by parameter, which could allow a remote user to submit a specially crafted query, allowing an attacker to retrieve all the information stored in the DB.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<1.45+ 1 more
- (no CPE)range: <1.45
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.