CVE-2024-32212

HIGH

LOGINT LoMag Inventory Management <1.0.20.120 - SQL Injection

Title source: llm
STIX 2.1

Description

SQL Injection vulnerability in LOGINT LoMag Inventory Management v1.0.20.120 and before allows an attacker to execute arbitrary code via the ArticleGetGroups, DocAddDocument, ClassClickShop and frmSettings components.

Scores

CVSS v3 8.1
EPSS 0.0067
EPSS Percentile 47.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-89
Status published
Products (1)
logint/lomag_warehouse_management < 1.0.20.120
Published May 01, 2024
Tracked Since Feb 18, 2026