CVE-2024-48070

Name of the Vulnerable Software and Affected Versions Weaver E-cology versions 9.x

Description The issue allows attackers to construct special requests to insert remote malicious code and trigger malicious code execution, potentially gaining control of server privileges. It is related to a SQL injection vulnerability.

Recommendations For versions 9.x, update to a version that includes a fix for the SQL injection vulnerability to prevent malicious code execution and potential privilege escalation.