PRP: Request SQLi in Mura/Masa CMS (CVE-2024-32640) #497
Assignees
Labels
Contributor queue
When a contributor has already one issue/PR in review, we put the following ones on hold with this.
Comments
tooryx
added
the
Contributor queue
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi there.
I would like to start implementing a plugin to detect SQLi in Mura/Masa CMS (CVE-2024-32640). This vulnerability was published on May 2024, and Apple has been hacked cause this vulnerability, https://blog.projectdiscovery.io/hacking-apple-with-sql-injection/.
References:
https://nvd.nist.gov/vuln/detail/CVE-2024-32640
https://blog.projectdiscovery.io/hacking-apple-with-sql-injection/
Description:
Mura CMS and Masa CMS are content management systems designed to facilitate the creation, management, and deployment of digital content for websites and web applications. Both CMS platforms offer robust features tailored to different needs, though they share some common capabilities.
Affected Versions:
Masa CMS < 7.4.6/7.3.13/7.2.8
Thanks.
The text was updated successfully, but these errors were encountered: