CVE-2024-24256

CVE-2024-24256 · Severity

SQL Injection vulnerability in Yonyou space-time enterprise information integration platform v.9.0 and before allows an attacker to obtain sensitive information via the gwbhAIM parameter in the saveMove.jsp in the hr_position directory.

Learn more about our Web Application Penetration Testing UK.