22Mar
CVE-2024-25168 | Snow 2.0.0 system/role/list dataScope sql injection
A vulnerability was found in Snow 2.0.0. It has been rated as critical. This issue affects some unknown processing of the component system/role/list. The manipulation of the argument dataScope leads to sql injection. The identification of this vulnerability is CVE-2024-25168. The attack may be initiated remotely. There is no exploit available.