4 matches found
CVE-2023-2832
SQL Injection in GitHub repository unilogies/bumsys prior to 2.2.0...
CVE-2023-2832
creationtimestamp| type| source ---|---|--- 2023-05-22 14:25:41+00:00| seen| https://t.me/cibsecurity/64525 2025-01-21 22:01:03+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/2489...
CVE-2023-2832 SQL Injection in unilogies/bumsys
SQL Injection in GitHub repository unilogies/bumsys prior to 2.2.0...
CVE-2023-2832
CVE-2023-2832 concerns the Unilogies Bumsys project (unilogies/bumsys) with SQL injection in versions prior to 2.2.0. The vulnerability stems from building SQL queries by appending user-supplied values (customerId, empId, company_id) without proper quoting, leading to injection and potential dela...