Lucene search
K

241 matches found

OSV
OSV
added 2022/10/17 10:15 p.m.5 views

CVE-2022-3158

Rockwell Automation FactoryTalk VantagePoint versions 8.0, 8.10, 8.20, 8.30, 8.31 are vulnerable to an input validation vulnerability. The FactoryTalk VantagePoint SQL Server lacks input validation when users enter SQL statements to retrieve information from the back-end database. If successfully...

8.8CVSS6.4AI score0.03161EPSS
Exploits0References1
OSV
OSV
added 2022/10/17 9:15 p.m.8 views

CVE-2022-38743

Rockwell Automation FactoryTalk VantagePoint versions 8.0, 8.10, 8.20, 8.30, 8.31 are vulnerable to an improper access control vulnerability. The FactoryTalk VantagePoint SQL Server account could allow a malicious user with read-only privileges to execute SQL statements in the back-end database. ...

8.8CVSS6.1AI score0.0127EPSS
Exploits0References1
CNVD
CNVD
added 2022/10/10 12:0 a.m.24 views

Rockwell Automation Factory Talk VantagePoint SQL Injection Vulnerability

Rockwell Automation Factory Talk VantagePoint is an advanced industrial application ecosystem from Rockwell Automation, Inc. The SQL injection vulnerability in Rockwell Automation Factory Talk VantagePoint stems from a failure to properly validate SQL statements entered by users when retrieving...

8.8CVSS2.9AI score0.03161EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/10/06 12:0 a.m.6 views

Rockwell Automation Factory Talk VantagePoint SQL注入漏洞

Rockwell Automation Factory Talk VantagePoint is an advanced industrial application ecosystem from Rockwell Automation, Inc. The SQL injection vulnerability in Rockwell Automation Factory Talk VantagePoint stems from a failure to properly validate SQL statements entered by users when retrieving...

8.8CVSS9AI score0.03161EPSS
Exploits0References3
OSV
OSV
added 2022/08/16 7:15 p.m.3 views

CVE-2021-39085

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 through 6.1.1.1 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in th...

9.8CVSS5.9AI score0.0078EPSS
Exploits0References2
Prion
Prion
added 2022/08/16 7:15 p.m.24 views

Sql injection

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 through 6.1.1.1 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in th...

7.5CVSS9.3AI score0.0078EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2022/06/24 12:0 a.m.20 views

IBM Financial Transaction Manager for Digital Payments SQL注入漏洞

IBM Financial Transaction Manager for Digital Payments is a financial transaction manager from IBM Corporation in the United States. IBM Financial Transaction Manager for Digital Payments for Multi-Platform versions 3.2.0 through 3.2.9 are vulnerable to SQL injection, which can be exploited by...

9.8CVSS5AI score0.01068EPSS
Exploits0References1
NVD
NVD
added 2022/06/15 4:15 p.m.34 views

CVE-2019-4575

IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.2.0 through 3.2.9 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM...

9.8CVSS0.01068EPSS
Exploits0References2
Prion
Prion
added 2022/06/15 4:15 p.m.18 views

Sql injection

IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.2.0 through 3.2.9 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM...

7.5CVSS9.4AI score0.01068EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2022/06/09 12:0 a.m.24 views

Car Rental Management System SQL Injection Vulnerability (CNVD-2022-61087)

Car Rental Management System is a car rental management system. SQL injection vulnerability exists in Car Rental Management System, which can be exploited by attackers to view, add, modify or delete information in the back-end database...

7.2CVSS4.1AI score0.04522EPSS
Exploits1References1
Prion
Prion
added 2022/06/06 7:15 p.m.17 views

Sql injection

IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database...

7.5CVSS9.5AI score0.01294EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/06/06 4:20 p.m.34 views

CVE-2022-31768

IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database...

5.3CVSS9.7AI score0.01294EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/06/05 12:0 a.m.5 views

CVE-2022-31768

IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database...

9.8CVSS5.7AI score0.01294EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2022/06/02 12:0 a.m.6 views

Car Rental Management System SQL注入漏洞

Car Rental Management System is a car rental management system. SQL injection vulnerability exists in Car Rental Management System, which can be exploited by attackers to view, add, modify or delete information in the back-end database...

7.2CVSS5.9AI score0.04522EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/06/02 12:0 a.m.5 views

Car Rental Management System SQL注入漏洞

Car Rental Management System is a car rental management system. SQL injection vulnerability exists in Car Rental Management System, which can be exploited by attackers to view, add, modify or delete information in the back-end database...

7.2CVSS5.9AI score0.04879EPSS
Exploits1References2
OSV
OSV
added 2022/04/14 3:15 p.m.9 views

CVE-2022-1258

A blind SQL injection vulnerability in the ePolicy Orchestrator ePO extension of MA prior to 5.7.6 can be exploited by an authenticated administrator on ePO to perform arbitrary SQL queries in the back-end database, potentially leading to command execution on the server...

7.2CVSS6AI score0.00936EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/04/14 3:15 p.m.5 views

CVE-2022-1258

A blind SQL injection vulnerability in the ePolicy Orchestrator ePO extension of MA prior to 5.7.6 can be exploited by an authenticated administrator on ePO to perform arbitrary SQL queries in the back-end database, potentially leading to command execution on the server...

8.4CVSS7.5AI score0.00936EPSS
Exploits0References2
Prion
Prion
added 2022/04/14 3:15 p.m.23 views

Sql injection

A blind SQL injection vulnerability in the ePolicy Orchestrator ePO extension of MA prior to 5.7.6 can be exploited by an authenticated administrator on ePO to perform arbitrary SQL queries in the back-end database, potentially leading to command execution on the server...

6CVSS7.3AI score0.00936EPSS
Exploits0References1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/06 7:27 p.m.77 views

Security Bulletin: Apache Log4j vulnerability

Summary Apache Log4j vulnerability Vulnerability Details CVEID: CVE-2022-23305 DESCRIPTION: Apache Log4j is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the JDBCAppender, which could allow the attacker to view, add, modify or delete information in...

9.8CVSS1.2AI score0.66537EPSS
Exploits1Affected Software1
CNNVD
CNNVD
added 2021/10/13 12:0 a.m.7 views

Proofpoint Insider Threat Management Server SQL注入漏洞

Proofpoint Insider Threat Management Server is a server-side application from Proofpoint, Inc. that is used to prevent malicious operations by enterprise insiders. A security vulnerability exists in Proofpoint Insider Threat Management Server that stems from incorrect input validation of the...

9.8CVSS8.8AI score0.00964EPSS
Exploits0References3
Rows per page
Query Builder