THREATOPS
THREAT OPSCVEs › CVE-2024-6670

CVE-2024-6670 — Progress WhatsUp Gold SQL Injection Vulnerability

CISA KEVExploited: confirmedProgress

Progress WhatsUp Gold contains a SQL injection vulnerability that allows an unauthenticated attacker to retrieve the user's encrypted password if the application is configured with only a single user.

Vulnerability details