3 matches found
CVE-2022-26887
creationtimestamp| type| source ---|---|--- 2022-03-29 20:11:28+00:00| seen| https://t.me/cibsecurity/39755...
CVE-2022-26887 Delta Electronics DIAEnergie SQL Injection in DIAE_HandlerTag_KID.ashx
Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in DIAEloopmapHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...
CVE-2022-26887
CVE-2022-26887 affects Delta Electronics DIAEnergie (all versions prior to 1.8.02.004, fixed in 1.9+ per ICS Update C). The vulnerability is a blind SQL injection in DIAE_loopmapHandler.ashx (and related handlers per multiple sources) caused by insufficient validation of external input, enabling ...