Home / Vulnerability Intelligence / CVE-2024-46636

CVE-2024-46636 - Vulnerability Analysis

N/a

Last Updated: April 27, 2026

NASA EOSDIS MODAPS - SQL Injection

Published: April 27, 2026Updated: April 27, 2026PoC Available

Overview

NASA Earth Observing System Data and Information System (EOSDIS) MODAPS v8.1 contains a sql injection caused by improper sanitization of the category parameter, letting attackers execute arbitrary SQL commands remotely, exploit requires crafted request.

Severity & Score

Severity: N/a

Impact

Attackers can execute arbitrary SQL commands, potentially leading to data disclosure or modification.

Mitigation

Update to the latest version.

References

https://bugcrowd.com/Xnu11
https://github.com/NU1L0/CVE-2024-46636-SQLi-MODAPS
https://www.linkedin.com/in/abdulrahman-aldossary-842b6b26b/

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2024-46636
Severity: N/a
Type: sql_injection
Status: new

CVSS Metrics

N/A