A SQL injection vulnerability in unit.php in Sonic... · CVE-2024-31961 · GitHub Advisory Database · GitHub

A SQL injection vulnerability in unit.php in Sonic...

Unreviewed Published May 8, 2024 to the GitHub Advisory Database

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

A SQL injection vulnerability in unit.php in Sonic Shopfloor.guide before 3.1.3 allows remote attackers to execute arbitrary SQL commands via the level2 parameter.

References

Published by the National Vulnerability Database

May 8, 2024

Published to the GitHub Advisory Database May 8, 2024