CVE-2024-42679 Information

Description

SQL Injection vulnerability in Super easy enterprise management system v.1.0.0 and before allows a local attacker to execute arbitrary code via a crafted script to the/ajax/Login.ashx component.

Reference

https://github.com/WarmBrew/web_vul/blob/main/CYGLXT/CYsqli.md