5 matches found
CVE-2022-38923
BluePage CMS thru v3.9 processes an insufficiently sanitized HTTP Header allowing MySQL Injection in the 'User-Agent' field using a Time-based blind SLEEP payload...
CVE-2022-38923
creationtimestamp| type| source ---|---|--- 2023-04-03 18:24:56+00:00| seen| https://t.me/cibsecurity/61328 2023-04-03 19:36:50+00:00| seen| Telegram/FSN3ch32agJ8vGDHr-32QwsNqT-vhDnseQBZOXbikpvlg...
CVE-2022-38923
BluePage CMS thru v3.9 processes an insufficiently sanitized HTTP Header allowing MySQL Injection in the 'User-Agent' field using a Time-based blind SLEEP payload...
CVE-2022-38923
BluePage CMS (3.9 and earlier) contains SQL injection vulnerabilities due to insufficient sanitization of HTTP header fields. CVE-2022-38923 affects the User-Agent header, enabling MySQL Injection with a time-based blind payload on network access without authentication; CVE-2022-38922 (Red Hat / ...
CVE-2022-38923
BluePage CMS thru v3.9 processes an insufficiently sanitized HTTP Header allowing MySQL Injection in the 'User-Agent' field using a Time-based blind SLEEP payload...