Lucene search
+L

61 matches found

osv
osv
added 2023/07/16 4:15 p.m.6 views

CVE-2023-3690

A vulnerability, which was classified as critical, has been found in Bylancer QuickOrder 6.3.7. Affected by this issue is some unknown functionality of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may be launched...

9.8CVSS5.6AI score0.00496EPSS
Exploits0References2
nvd
nvd
added 2023/07/16 4:15 p.m.15 views

CVE-2023-3690

A vulnerability, which was classified as critical, has been found in Bylancer QuickOrder 6.3.7. Affected by this issue is some unknown functionality of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may be launched...

9.8CVSS0.00496EPSS
Exploits0References2
osv
osv
added 2023/07/16 4:15 p.m.4 views

CVE-2023-3689

A vulnerability classified as critical was found in Bylancer QuickQR 6.3.7. Affected by this vulnerability is an unknown functionality of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack can be launched remotely. The...

9.8CVSS5.7AI score0.00496EPSS
Exploits0References2
nvd
nvd
added 2023/07/16 4:15 p.m.13 views

CVE-2023-3689

A vulnerability classified as critical was found in Bylancer QuickQR 6.3.7. Affected by this vulnerability is an unknown functionality of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack can be launched remotely. The...

9.8CVSS0.00496EPSS
Exploits0References2
prion
prion
added 2023/07/16 4:15 p.m.22 views

Sql injection

A vulnerability classified as critical was found in Bylancer QuickQR 6.3.7. Affected by this vulnerability is an unknown functionality of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack can be launched remotely. The...

6.5CVSS9.6AI score0.00496EPSS
Exploits0References2Affected Software1
prion
prion
added 2023/07/16 4:15 p.m.21 views

Sql injection

A vulnerability, which was classified as critical, has been found in Bylancer QuickOrder 6.3.7. Affected by this issue is some unknown functionality of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may be launched...

6.5CVSS9.5AI score0.00496EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2023/07/16 4:0 p.m.19 views

CVE-2023-3690 Bylancer QuickOrder GET Parameter blog sql injection

A vulnerability, which was classified as critical, has been found in Bylancer QuickOrder 6.3.7. Affected by this issue is some unknown functionality of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may be launched...

6.5CVSS9.9AI score0.00496EPSS
Exploits0References2
cve
cve
added 2023/07/16 4:0 p.m.44 views

CVE-2023-3690

CVE-2023-3690 concerns Bylancer QuickOrder 6.3.7. The issue is described as a SQL injection in the blog path, triggered by manipulating the GET Parameter Handler argument s. This affects the /blog functionality within the component described as GET Parameter Handler and is reported to be exploita...

9.8CVSS8.2AI score0.00496EPSS
Exploits0References2Affected Software1
cve
cve
added 2023/07/16 3:31 p.m.43 views

CVE-2023-3689

CVE-2023-3689 affects Bylancer QuickQR 6.3.7. The GET Parameter Handler in the /blog functionality allows remote SQL injection by manipulating the s argument. Multiple sources confirm this, with impact described as compromising confidentiality, integrity and availability. No exploit specifics are...

9.8CVSS8.3AI score0.00496EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2023/07/16 3:31 p.m.22 views

CVE-2023-3689 Bylancer QuickQR GET Parameter blog sql injection

A vulnerability classified as critical was found in Bylancer QuickQR 6.3.7. Affected by this vulnerability is an unknown functionality of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack can be launched remotely. The...

6.5CVSS10AI score0.00496EPSS
Exploits0References2
nvd
nvd
added 2023/07/16 3:15 p.m.25 views

CVE-2023-3688

A vulnerability classified as critical has been found in Bylancer QuickJob 6.1. Affected is an unknown function of the component GET Parameter Handler. The manipulation of the argument keywords/gender leads to sql injection. It is possible to launch the attack remotely. VDB-234234 is the identifi...

9.8CVSS0.005EPSS
Exploits0References2
osv
osv
added 2023/07/16 3:15 p.m.5 views

CVE-2023-3688

A vulnerability classified as critical has been found in Bylancer QuickJob 6.1. Affected is an unknown function of the component GET Parameter Handler. The manipulation of the argument keywords/gender leads to sql injection. It is possible to launch the attack remotely. VDB-234234 is the identifi...

9.8CVSS5.6AI score0.005EPSS
Exploits0References2
prion
prion
added 2023/07/16 3:15 p.m.21 views

Sql injection

A vulnerability classified as critical has been found in Bylancer QuickJob 6.1. Affected is an unknown function of the component GET Parameter Handler. The manipulation of the argument keywords/gender leads to sql injection. It is possible to launch the attack remotely. VDB-234234 is the identifi...

6.5CVSS9.6AI score0.005EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2023/07/16 2:31 p.m.32 views

CVE-2023-3688 Bylancer QuickJob GET Parameter sql injection

A vulnerability classified as critical has been found in Bylancer QuickJob 6.1. Affected is an unknown function of the component GET Parameter Handler. The manipulation of the argument keywords/gender leads to sql injection. It is possible to launch the attack remotely. VDB-234234 is the identifi...

6.5CVSS10AI score0.005EPSS
Exploits0References2
cve
cve
added 2023/07/16 2:31 p.m.54 views

CVE-2023-3688

Bylancer QuickJob 6.1 is affected by a SQL injection in the GET Parameter Handler, via the keywords/gender argument. The vulnerability arises from an unknown function in that component and can be exploited remotely. There is no published fix/version in the provided documents; a temporary workarou...

9.8CVSS8.3AI score0.005EPSS
Exploits0References2Affected Software1
osv
osv
added 2023/07/16 2:15 p.m.4 views

CVE-2023-3687

A vulnerability was found in Bylancer QuickVCard 2.1. It has been rated as critical. This issue affects some unknown processing of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may be initiated remotely. The identifier...

9.8CVSS5.7AI score0.005EPSS
Exploits0References2
nvd
nvd
added 2023/07/16 2:15 p.m.11 views

CVE-2023-3687

A vulnerability was found in Bylancer QuickVCard 2.1. It has been rated as critical. This issue affects some unknown processing of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may be initiated remotely. The identifier...

9.8CVSS0.005EPSS
Exploits0References2
prion
prion
added 2023/07/16 2:15 p.m.20 views

Sql injection

A vulnerability was found in Bylancer QuickVCard 2.1. It has been rated as critical. This issue affects some unknown processing of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may be initiated remotely. The identifier...

6.5CVSS9.6AI score0.005EPSS
Exploits0References2Affected Software1
cve
cve
added 2023/07/16 1:31 p.m.40 views

CVE-2023-3687

Bylancer QuickVCard 2.1 contains a SQL injection in the GET Parameter Handler affecting the /blog endpoint, via manipulation of the argument s. This can be triggered remotely and results in unauthorized data access/modification (high impact per CVSS). The exact vulnerable code/path is not fully d...

9.8CVSS8.2AI score0.005EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2023/07/16 1:31 p.m.21 views

CVE-2023-3687 Bylancer QuickVCard GET Parameter blog sql injection

A vulnerability was found in Bylancer QuickVCard 2.1. It has been rated as critical. This issue affects some unknown processing of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may be initiated remotely. The identifier...

6.5CVSS9.9AI score0.005EPSS
Exploits0References2
Rows per page
Query Builder