GCVE - cpe:2.3:a:n/a:inis:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:inis:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Inis (`b57a1e52-c6c9-500b-a7d2-9dbda1cba204`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-0342`	vulnerable	2026-06-08 06:22:00.382025	Inis Sqlite.php sql injection MEDIUM (6.3) A vulnerability classified as critical has been found in Inis up to 2.0.1. Affected is an unknown function of the file /app/api/controller/default/Sqlite.php. The manipulation of the argument sql leads to sql injection. The exploit has been disclosed to the public and may be used. VDB-250110 is the identifier assigned to this vulnerability. Published: 2024-01-09T19:31:03.881Z Updated: 2025-06-17T20:39:18.790Z Open on db.gcve.eu Reference links https://vuldb.com/?id.250110 https://vuldb.com/?ctiid.250110 https://note.zhaoj.in/share/nWYJHrmUqv7i	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-0341`	vulnerable	2026-06-08 06:22:00.381535	Inis GET Request File.php path traversal LOW (3.5) A vulnerability was found in Inis up to 2.0.1. It has been rated as problematic. This issue affects some unknown processing of the file /app/api/controller/default/File.php of the component GET Request Handler. The manipulation of the argument path leads to path traversal: '../filedir'. The exploit has been disclosed to the public and may be used. The identifier VDB-250109 was assigned to this vulnerability. Published: 2024-01-09T18:55:59.518Z Updated: 2025-04-17T17:19:51.600Z Open on db.gcve.eu Reference links https://vuldb.com/?id.250109 https://vuldb.com/?ctiid.250109 https://note.zhaoj.in/share/VYx8H9u8gyHw	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-0308`	vulnerable	2026-06-08 06:22:00.296385	Inis Proxy.php server-side request forgery MEDIUM (6.3) A vulnerability was found in Inis up to 2.0.1. It has been rated as critical. This issue affects some unknown processing of the file app/api/controller/default/Proxy.php. The manipulation of the argument p_url leads to server-side request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-249875. Published: 2024-01-08T10:00:05.086Z Updated: 2025-06-03T14:38:10.657Z Open on db.gcve.eu Reference links https://vuldb.com/?id.249875 https://vuldb.com/?ctiid.249875 https://note.zhaoj.in/share/2E2JG2PClHGF	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.