Lucene search
K

31 matches found

OSV
OSV
added 2022/05/09 6:15 p.m.4 views

CVE-2022-29971

An argument injection vulnerability in the browser-based authentication component of the Magnitude Simba Amazon Athena ODBC Driver 1.1.1 through 1.1.x before 1.1.17 may allow a local user to execute arbitrary code...

7.8CVSS6AI score0.00346EPSS
Exploits0References2
OSV
OSV
added 2022/05/09 6:15 p.m.3 views

CVE-2022-29972

An argument injection vulnerability in the browser-based authentication component of the Magnitude Simba Amazon Redshift ODBC Driver 1.4.14 through 1.4.21.1001 and 1.4.22 through 1.4.x before 1.4.52 may allow a local user to execute arbitrary code...

7.8CVSS7.6AI score0.03686EPSS
Exploits0References2
OSV
OSV
added 2022/05/09 6:15 p.m.6 views

CVE-2022-30239

An argument injection vulnerability in the browser-based authentication component of the Magnitude Simba Amazon Athena JDBC Driver 2.0.25 through 2.0.28 may allow a local user to execute code. NOTE: this is different from CVE-2022-29971...

7.8CVSS5.8AI score0.00454EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/05/09 6:15 p.m.1 views

CVE-2022-29972

An argument injection vulnerability in the browser-based authentication component of the Magnitude Simba Amazon Redshift ODBC Driver 1.4.14 through 1.4.21.1001 and 1.4.22 through 1.4.x before 1.4.52 may allow a local user to execute arbitrary code...

7.8CVSS7.5AI score0.03686EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/05/09 6:15 p.m.4 views

CVE-2022-29971

An argument injection vulnerability in the browser-based authentication component of the Magnitude Simba Amazon Athena ODBC Driver 1.1.1 through 1.1.x before 1.1.17 may allow a local user to execute arbitrary code...

7.8CVSS7.3AI score0.00346EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/05/09 6:15 p.m.2 views

CVE-2022-30239

An argument injection vulnerability in the browser-based authentication component of the Magnitude Simba Amazon Athena JDBC Driver 2.0.25 through 2.0.28 may allow a local user to execute code. NOTE: this is different from CVE-2022-29971...

7.8CVSS7.2AI score0.00454EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/05/09 12:0 a.m.9 views

Magnitude Simba Amazon Athena ODBC Driver 参数注入漏洞

Magnitude Simba Amazon Athena ODBC Driver is an ODBC driver from Magnitude, Inc. It is used to connect real-time data from Amazon Athena directly from any application that supports ODBC connections. The Magnitude Simba Amazon Athena ODBC Driver has a parameter injection vulnerability that stems...

7.8CVSS7.3AI score0.00346EPSS
Exploits0References4
OSV
OSV
added 2019/08/20 9:15 p.m.6 views

CVE-2019-6143

Forcepoint Next Generation Firewall Forcepoint NGFW 6.4.x before 6.4.7, 6.5.x before 6.5.4, and 6.6.x before 6.6.2 has a serious authentication vulnerability that potentially allows unauthorized users to bypass password authentication and access services protected by the NGFW Engine. The...

9.1CVSS7.2AI score0.01129EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

OpenBB 1.0.x search.php q Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/10214/info It has been reported that OpenBB is affected by multiple input validation vulnerabilities. These issues are due to a failure of the application to properly sanitize user supplied user input. The SQL issues may...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2011/08/17 12:0 a.m.20 views

phpWebSite - 'page_id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/49176/info phpWebSite is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/04/17 12:0 a.m.13 views

EsContacts 1.0 - search.php?msg Cross-Site Scripting

EsContacts 1.0 - search.php?msg Cross-Site Scripting source: https://www.securityfocus.com/bid/28825/info EsContacts is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Attackers may leverage these issues to execute arbitrary script...

6.8AI score
Exploits0
Rows per page
Query Builder