3 matches found
CVE-2022-26667
creationtimestamp| type| source ---|---|--- 2022-03-29 20:11:36+00:00| seen| https://t.me/cibsecurity/39762...
CVE-2022-26667
Delta Electronics DIAEnergie is affected by a blind SQL injection vulnerability (CVE-2022-26667) in GetDemandAnalysisData for all versions before 1.9. The issue allows an attacker to inject arbitrary SQL, read/modify database contents, and execute system commands. No exploitation details are prov...
Delta Electronics DIAEnergie (Update C)
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Delta Electronics Equipment: DIAEnergie Vulnerabilities: Path Traversal, Incorrect Default Permissions, SQL Injection, Uncontrolled Search Path Element 2. UPDATE INFORMATION This updated advisory is a...