What the vulnerability does
01Description
The SolarWinds Platform was determined to be affected by a SWQL Injection Vulnerability. Attack complexity is high for this vulnerability.
CVE-2024-28996
HIGH
CVE-2024-28996: SolarWinds Platform SWQL Injection Vulnerability
CVSS base score
7.5/10
CVSS vector
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Key dates
02Disclosure timeline
June 4, 2024
CVE published
August 2, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2024-2586 SQL injection vulnerability in AMSS++
CVE-2026-40810 Unauthenticated SQLi in userinfo Endpoint
CVE-2026-10171 code-projects Online Music Site AdminUpdateAlbum.php sql injection
CVE-2024-0502 SourceCodester House Rental Management System Edit User manage_user.php sql injection
CVE-2026-0590 code-projects Online Product Reservation System POST Parameter delete.php sql injection
