CVE-2024-9286

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TRtek Software Distant Education Platform allows SQL Injection, Parameter Injection. This issue affects Distant Education Platform: before 3.2024.11.

CVSS

No CVSS.

References

Link	Resource
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1649
https://www.usom.gov.tr/bildirim/tr-24-1649

Configurations

No configuration.

History

02 Jun 2026, 09:16

Type	Values Removed	Values Added
References		() https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1649 -
Summary	(en) Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TRtek Software Distant Education Platform allows SQL Injection, Parameter Injection.This issue affects Distant Education Platform: before 3.2024.11.	(en) Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TRtek Software Distant Education Platform allows SQL Injection, Parameter Injection. This issue affects Distant Education Platform: before 3.2024.11.

14 Oct 2025, 14:15

Type	Values Removed	Values Added
Summary	(en) Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'), Improper Input Validation vulnerability in TRtek Software Distant Education Platform allows SQL Injection, Parameter Injection.This issue affects Distant Education Platform: before 3.2024.11.	(en) Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TRtek Software Distant Education Platform allows SQL Injection, Parameter Injection.This issue affects Distant Education Platform: before 3.2024.11.
CWE	~~CWE-20~~

21 Nov 2024, 17:15

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~0.0~~	v2 : unknown v3 : unknown

10 Oct 2024, 12:51

Type	Values Removed	Values Added
Summary		(es) Vulnerabilidad de neutralización incorrecta de elementos especiales utilizados en un comando SQL ('Inyección SQL') y validación de entrada incorrecta en TRtek Software Distant Education Platform permite inyección SQL e inyección de parámetros. Este problema afecta a la plataforma de educación a distancia: antes de 3.2024.11.

09 Oct 2024, 14:35

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 0.0

09 Oct 2024, 14:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-10-09 14:15

Updated : 2026-06-02 09:16

NVD link : CVE-2024-9286

Mitre link : CVE-2024-9286

CVE.ORG link : CVE-2024-9286

JSON object : View

Products Affected

No product.

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

JSON object

Attach tags to CVE-2024-9286

Attach tags to `CVE-2024-9286`