Lucene search
K

5 matches found

CVE
CVE
added 2026/04/05 8:45 p.m.11 views

CVE-2019-25704

CVE-2019-25704 relates to Kados R10 GreenBee and a reported SQL injection vulnerability exposed through the filter_user_mail parameter. The vulnerability allows an attacker to inject SQL code into database queries via crafted requests, with the potential to extract sensitive data or modify data. ...

9.1CVSS6AI score0.00311EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/05 8:45 p.m.2 views

CVE-2019-25700 Kados R10 GreenBee SQL Injection via sort_direction Parameter

Kados R10 GreenBee contains an SQL injection vulnerability that allows attackers to manipulate database queries by injecting SQL code through the sortdirection parameter. Attackers can submit malicious SQL statements in the sortdirection parameter to extract sensitive database information or modi...

8.8CVSS6AI score0.00311EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/04/05 8:45 p.m.20 views

CVE-2019-25696 Kados R10 GreenBee SQL Injection via language_tag Parameter

Kados R10 GreenBee contains an SQL injection vulnerability that allows attackers to manipulate database queries by injecting SQL code through the languagetag parameter. Attackers can submit malicious SQL statements in the languagetag parameter to extract sensitive database information or modify...

8.8CVSS0.00311EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/04/05 8:45 p.m.2 views

CVE-2019-25692

Kados R10 GreenBee contains an SQL injection vulnerability that allows attackers to manipulate database queries by injecting SQL code through the 'idtomodify' parameter. Attackers can send crafted requests with malicious SQL statements in the idtomodify field to extract sensitive database...

8.8CVSS6AI score0.00311EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/04/05 8:45 p.m.2 views

CVE-2019-25690

Kados R10 GreenBee contains an SQL injection vulnerability that allows attackers to manipulate database queries by injecting SQL code through the mngprofileid parameter. Attackers can send crafted requests with malicious SQL payloads in the mngprofileid parameter to extract sensitive database...

8.8CVSS6AI score0.00311EPSS
Exploits1References4
Rows per page
Query Builder