An issue discovered in SpringBlade 3.7.1 allows attackers to obtain sensitive information via crafted GET request to api/blade-system/tenant.
CVSS
No CVSS.
References
Link | Resource |
---|---|
https://github.com/wy876/cve/issues/3 |
Configurations
No configuration.
History
No history.
Information
Published : 2024-04-30 20:15
Updated : 2024-07-03 01:57
NVD link : CVE-2024-33332
Mitre link : CVE-2024-33332
CVE.ORG link : CVE-2024-33332
JSON object : View
Products Affected
No product.
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')