Lucene search
+L

241 matches found

CNVD
CNVD
added 2024/07/17 12:0 a.m.27 views

Apache Superset SQL Injection Vulnerability (CNVD-2024-35190)

Apache Superset is a data visualization and data exploration platform from the Apache USA Foundation. Apache Superset suffers from a SQL injection vulnerability that can be exploited by an attacker to view, add, modify, or delete information in the back-end database...

9.8CVSS7.2AI score0.04433EPSS
Exploits2References1
CNNVD
CNNVD
added 2024/07/16 12:0 a.m.4 views

Apache Superset 安全漏洞

Apache Superset is a data visualization and data exploration platform from the Apache USA Foundation. Apache Superset suffers from a SQL injection vulnerability that can be exploited by an attacker to view, add, modify, or delete information in the back-end database...

9.8CVSS7.7AI score0.04433EPSS
Exploits2References3
CNNVD
CNNVD
added 2024/06/13 12:0 a.m.5 views

Dell Secure Connect Gateway Access Control Error Vulnerability

Dell Secure Connect Gateway is a secure connectivity gateway from Dell, Inc. An access control error vulnerability exists in Dell Secure Connect Gateway versions prior to 5.24.00.00, which stems from an improperly access controlled REST API issue that could be exploited by a remote attacker to...

5.4CVSS6.9AI score0.00349EPSS
Exploits0References2
CNVD
CNVD
added 2024/05/28 12:0 a.m.6 views

Online Student Enrollment System SQL Injection Vulnerability (CNVD-2024-26370)

Online Student Enrollment System is an online student enrollment system by Lyndon Bermoy, an individual developer. A SQL injection vulnerability exists in Online Student Enrollment System version 1.0, which can be exploited by an attacker to view, add, modify, or delete information in the back-en...

8.8CVSS7.5AI score0.00614EPSS
Exploits1References1
CNVD
CNVD
added 2024/05/28 12:0 a.m.8 views

Online Student Enrollment System SQL Injection Vulnerability (CNVD-2024-26372)

Online Student Enrollment System is an online student enrollment system by Lyndon Bermoy, an individual developer. Online Student Enrollment System suffers from a SQL injection vulnerability that can be exploited by an attacker to view, add, modify, or delete information in the back-end database ...

8.8CVSS7.4AI score0.00614EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/05/27 12:0 a.m.5 views

Online Student Enrollment System SQL注入漏洞

Online Student Enrollment System is an online student enrollment system by Lyndon Bermoy, an individual developer. Online Student Enrollment System version 1.0 suffers from a SQL injection vulnerability that can be exploited by an attacker to view, add, modify, or delete information in the back-e...

8.8CVSS7.7AI score0.00614EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/05/27 12:0 a.m.6 views

Online Student Enrollment System SQL注入漏洞

Online Student Enrollment System is an online student enrollment system by Lyndon Bermoy, an individual developer. Online Student Enrollment System suffers from a SQL injection vulnerability that can be exploited by an attacker to view, add, modify, or delete information in the back-end database ...

8.8CVSS7.7AI score0.00614EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/05/16 12:0 a.m.5 views

Rockwell Automation FactoryTalk View SE 安全漏洞

Rockwell Automation FactoryTalk View SE is an industrial automation system view interface from Rockwell Automation. Rockwell Automation FactoryTalk View SE suffers from a SQL injection vulnerability that can be exploited by an attacker to view, add, modify, or delete information in a back-end...

9.8CVSS7.6AI score0.00652EPSS
Exploits0References2
CNVD
CNVD
added 2024/05/10 12:0 a.m.12 views

F5 BIG-IP Next Central Manager SQL Injection Vulnerability

F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, load balancing and other functions. A SQL injection vulnerability exists in F5 BIG-IP Next Central Manager, which can be exploited by an attacker to send crafted...

7.5CVSS7.4AI score0.07163EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 5:36 p.m.64 views

CVE-2023-38724

Summary: CVE-2023-38724 affects IBM Cognos Controller versions 10.4.1, 10.4.2, and 11.0.0. The issue is a SQL injection vulnerability that could allow a remote attacker to view, add, modify, or delete data in the back-end database when exploiting crafted SQL statements. The connected/official rem...

9.8CVSS7.2AI score0.00465EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.6 views

Delta Electronics DIAEnergie SQL注入漏洞

Delta Electronics DIAEnergie is an industrial energy management system from Delta Electronics, Taiwan, China. Delta Electronics DIAEnergie GetDIACloudList suffers from a SQL injection vulnerability that can be exploited by an attacker to view, add, modify, or delete information in the back-end...

8.8CVSS7.7AI score0.08742EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/18 12:0 a.m.7 views

DerbyNet 安全漏洞

DerbyNet is a simple code for a match broadcasting program. A SQL injection vulnerability exists in the DerbyNet print/render/award.inc script, which can be exploited by an attacker to be able to view, add, modify, or delete information in the back-end database...

9.8CVSS7.9AI score0.01429EPSS
Exploits2References2
CNVD
CNVD
added 2024/04/02 12:0 a.m.42 views

Apache Fineract SQL Injection Vulnerability (CNVD-2024-16106)

Apache Fineract is a set of open source digital financial services platform from the U.S. Apache Apache Foundation. The platform can provide users with data management, loan and savings portfolio management and real-time financial data and other functions. Apache Fineract versions prior to 1.8.5...

9.8CVSS9.3AI score0.01494EPSS
Exploits0References1
CNVD
CNVD
added 2024/03/26 12:0 a.m.5 views

Delta Electronics DIAEnergie SQL Injection Vulnerability (CNVD-2025-06624)

Delta Electronics DIAEnergie is an industrial energy management system from Delta Electronics, Taiwan, China, for monitoring and analyzing energy consumption in real time, calculating energy consumption and load characteristics, optimizing equipment performance, improving production processes and...

8.8CVSS7.5AI score0.08484EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/02/28 12:0 a.m.7 views

Apache Superset 安全漏洞

Apache Superset is a data visualization and data exploration platform from the Apache USA Foundation. Apache Superset suffers from a SQL injection vulnerability that can be exploited by an attacker to view, add, modify, or delete information in the back-end database by sending carefully crafted S...

6.5CVSS7.7AI score0.00773EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/02/23 6:47 p.m.26 views

CVE-2022-43842 IBM Aspera Console SQL injection

IBM Aspera Console 3.4.0 through 3.4.2 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 239079...

8.6CVSS8.7AI score0.00533EPSS
Exploits0References2
CNVD
CNVD
added 2024/01/12 12:0 a.m.38 views

Hospital Management System SQL Injection Vulnerability

A Hospital Management System HMS is a computerized system that helps manage healthcare-related information and helps healthcare providers do their jobs effectively. Hospital Management System V4.0 and prior versions suffer from a SQL injection vulnerability that stems from the application's lack ...

4.9CVSS7.4AI score0.00707EPSS
Exploits3References1
CNNVD
CNNVD
added 2023/11/17 12:0 a.m.7 views

Adobe RoboHelp 安全漏洞

Adobe RoboHelp Server is a server-based application for FrameMaker and RoboHelp enterprise users. An SQL injection vulnerability exists in Adobe RoboHelp Server. An attacker could use this vulnerability to view, add, modify, or delete information in the back-end database...

6.5CVSS7.5AI score0.01206EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/10/10 12:0 a.m.5 views

Election Services SQL Injection Vulnerability

Election Services is an application from Election Services, Inc. Election Services Internet Election Service suffers from a security vulnerability that stems from susceptibility to SQL injection attacks, allowing an unauthenticated, remote attacker to read or modify data for any election that...

10CVSS7.8AI score0.01051EPSS
Exploits0References4
CNVD
CNVD
added 2023/10/09 12:0 a.m.23 views

Online Pizza Ordering System SQL Injection Vulnerability

Online Pizza Ordering System is an online pizza ordering system. Online Pizza Ordering System suffers from a SQL injection vulnerability that can be exploited by an attacker to view, add, modify, or delete information in the back-end database via scripting...

9.8CVSS7.4AI score0.00409EPSS
Exploits0References1
Rows per page
Query Builder