getHecked
getHecked
/ gist:dc4ae46526d181d3deb17092815b9bec
Last active
March 7, 2025 08:31
CVE-2024-42844 public reference
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| CVE ID: CVE-2024-42844 | |
| Affected product & version: Epicor P21 - 23.2.5232 | |
| Description: | |
| A SQL Injection vulnerability has been identified in EPICOR Prophet 21 (P21) up to 23.2.5232. This vulnerability allows authenticated remote attackers to execute arbitrary SQL commands through unsanitized user input fields to obtain unauthorized information | |
| Remediation Recommendation: | |
| Upgrade software to 24.1.5358 |