Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 8:59 p.m.15 views

CVE-2022-46163

Travel support program is a rails app to support the travel support program of openSUSE TSP. Sensitive user data bank account details, password Hash can be extracted via Ransack query injection. Every deployment of travel-support-program below the patched version is affected. The...

7.5CVSS7AI score0.01019EPSS
Exploits1References1
Circl
Circl
added 2023/01/11 12:38 a.m.6 views

CVE-2022-46163

creationtimestamp| type| source ---|---|--- 2023-01-11 00:38:43+00:00| seen| https://t.me/cibsecurity/56293...

7.5CVSS7.3AI score0.01019EPSS
Exploits1References1
CVE
CVE
added 2023/01/10 8:26 p.m.46 views

CVE-2022-46163

CVE-2022-46163 affects the Travel Support Program (openSUSE) – a Rails app that uses the Ransack search library. The default Ransack configuration can be abused via *_start, *_end, or *_cont matchers to perform character‑by‑character brute‑force and exfiltrate sensitive data (e.g., bank account n...

7.5CVSS7.7AI score0.01019EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/10 8:26 p.m.7 views

CVE-2022-46163 travel-support-program vulnerable to data exfiltration via Ransack query injection

Travel support program is a rails app to support the travel support program of openSUSE TSP. Sensitive user data bank account details, password Hash can be extracted via Ransack query injection. Every deployment of travel-support-program below the patched version is affected. The...

7.5CVSS7.9AI score0.01019EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/01/10 8:26 p.m.36 views

CVE-2022-46163 travel-support-program vulnerable to data exfiltration via Ransack query injection

Travel support program is a rails app to support the travel support program of openSUSE TSP. Sensitive user data bank account details, password Hash can be extracted via Ransack query injection. Every deployment of travel-support-program below the patched version is affected. The...

7.5CVSS7.9AI score0.01019EPSS
Exploits1References3
Rows per page
Query Builder