6Şub
CVE-2024-24013 | novel-plus up to 4.3.0-RC1 /novel/pay/list offset/limit/sort sql injection
A vulnerability was found in novel-plus up to 4.3.0-RC1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /novel/pay/list. The manipulation of the argument offset/limit/sort leads to sql injection. This vulnerability is known as CVE-2024-24013. The attack needs to be initiated within the local network. There is no exploit available.