What the vulnerability does
01Description
Alisonic Sibylla devices are vulnerable to SQL injection attacks, which could allow complete access to the database.
CVSS base score
9.4/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
Key dates
02Disclosure timeline
September 27, 2024
CVE published
September 27, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2024-27304 pgx SQL Injection via Protocol Message Size Overflow
CVE-2023-41328 Possibility limited SQL injection due to insufficient validation in Frappe
CVE-2024-11487 Code4Berry Decoration Management System Between Dates Reports btndates_report.php sql injection
CVE-2025-11115 code-projects Simple Scheduling System addtime.php sql injection
CVE-2024-55976 WordPress Critical Site Intel plugin <= 1.0 - SQL Injection vulnerability
