CVE-2024-1576 Information

Description

SQL Injection vulnerability in MegaBIP software allows attacker to obtain site administrator privileges including access to the administration panel and the ability to change the administrator password. This issue affects MegaBIP software versions through 5.09.

Reference

https://cert.pl/en/posts/2024/06/CVE-2024-1576/ https://cert.pl/posts/2024/06/CVE-2024-1576/ https://megabip.pl/ https://www.gov.pl/web/cyfryzacja/rekomendacja-pelnomocnika-rzadu-ds-cyberbezpieczenstwa-dotyczaca-biuletynow-informacji-publicznej