CVE-2024-55460

Name of the Vulnerable Software and Affected Versions BoardRoom Limited Dividend Distribution Tax Election System version v2.0

Description A time-based SQL injection vulnerability in the login page of the BoardRoom Limited Dividend Distribution Tax Election System allows attackers to execute arbitrary code via a crafted input. This vulnerability enables attackers to inject malicious SQL code, potentially leading to unauthorized access or data manipulation. The issue is related to the login page and can be exploited using a specifically crafted input.

Recommendations For BoardRoom Limited Dividend Distribution Tax Election System version v2.0, consider disabling the login functionality until a patch is available to prevent potential exploitation. Restrict access to the login page to minimize the risk of arbitrary code execution. Avoid using crafted inputs that could trigger the SQL injection vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.