CVE-2024-24525 Information

Description

An issue in EpointWebBuilder 5.1.0-sp1 5.2.1-sp1 5.4.1 and 5.4.2 allows a remote attacker to execute arbitrary code via the infoid parameter of the URL.

Reference

https://l3v3lforall.github.io/EpointWebBuilder_v5.x_VULN/