NU1L0/CVE-2024-46636-SQLi-MODAPS

Releases0

Stars1

SQL Injection vulnerability in NASA EOSDIS MODAPS due to improper input validation in the `category` parameter. This flaw allows attackers to manipulate backend SQL queries, potentially leading to unauthorized data access and database compromise.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-46636 ↗	Apr 27, 2026Monday, 27 April 2026, 21:16	9.4 CRITICAL	—
NASA Earth Observing System Data and Information System (EOSDIS) MODAPS v8.1 was discovered to contain a SQL injection vulnerability in the category parameter