CVE-2024-24034

MEDIUM

Setorinformatica S.i.l - Open Redirect

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-24034. PoCs published by ELIZEUOPAIN.

AI-analyzed exploit summary The repository describes an open redirect vulnerability in The S.I.L 3.0 via the 'hprinter' parameter, which can be manipulated to redirect users to arbitrary URLs. It includes screenshots demonstrating the vulnerability but lacks functional exploit code.

Description

Setor Informatica S.I.L version 3.0 is vulnerable to Open Redirect via the hprinter parameter, allows remote attackers to execute arbitrary code.

Exploits (1)

nomisec WRITEUP

by ELIZEUOPAIN · poc

https://github.com/ELIZEUOPAIN/PoC-CVE-2024-24034

View Code ZIP pw:eip

The repository describes an open redirect vulnerability in The S.I.L 3.0 via the 'hprinter' parameter, which can be manipulated to redirect users to arbitrary URLs. It includes screenshots demonstrating the vulnerability but lacks functional exploit code.

Classification

Writeup 80%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: The S.I.L 3.0

No auth needed

Prerequisites: Access to the vulnerable application · Ability to manipulate the 'hprinter' parameter

MITRE ATT&CK

T1505 - Server Software Component T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory

https://github.com/ELIZEUOPAIN/CVE-2024-24034/tree/main

Scores

CVSS v3 6.1

EPSS 0.0056

EPSS Percentile 42.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-601

Status published

Products (1)

setorinformatica/s.i.l 3.0

Published Feb 08, 2024

Tracked Since Feb 18, 2026