279 matches found
CVE-2023-4740 IBOS OA Delete Draft delDraft&archiveId=0 sql injection
A vulnerability, which was classified as critical, was found in IBOS OA 4.5.5. This affects an unknown part of the file ?r=email/api/delDraft&archiveId=0 of the component Delete Draft Handler. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has...
CVE-2023-4740
CVE-2023-4740 affects IBOS OA 4.5.5, with a SQL injection in the Delete Draft Handler at the endpoint described as the unknown part of ?r=email/api/delDraft&archiveId=0. Multiple connected sources (NVD/NVD-derived, Red Hat, CVE lists, and PT Security) confirm remote exploitation potential and pub...
IBOS SQL Injection Vulnerability
IBOS is a collaborative office management system. A SQL injection vulnerability exists in IBOS OA version 4.5.5, which originates from the presence of an unknown part of ?r=email/api/delDraft&archiveId=0 in the component Delete Draft Handler. that leads to sql injection...
IBOS SQL Injection Vulnerability
IBOS is a collaborative office management system. An SQL injection vulnerability exists in IBOS OA version 4.5.5, which originates from the component Delete Draft Handler. in the ?r=diary/default/del in the unknown section, resulting in sql injection...
IBOS SQL Injection Vulnerability
IBOS is a collaborative office management system. A SQL injection vulnerability exists in IBOS OA version 4.5.5, which stems from unknown processing in ?r=dashboard/user/export&uid=X, resulting in sql injection...
PT-2023-30447 · Ibos Oa · Ibos Oa
Name of the Vulnerable Software and Affected Versions: IBOS OA version 4.5.5 Description: A critical issue affects the processing of the file at the endpoint "?r=dashboard/user/export&uid=uid", leading to SQL injection. The attack can be initiated remotely. Recommendations: For IBOS OA version...
PT-2023-30444 · Ibos Oa · Ibos Oa
Name of the Vulnerable Software and Affected Versions: IBOS OA version 4.5.5 Description: A critical issue has been found in the Delete Logs Handler component, specifically affecting the file ?r=diary/default/del. This issue leads to sql injection and can be initiated remotely. The manipulation o...
PT-2023-30443 · Ibos Oa · Ibos Oa
Name of the Vulnerable Software and Affected Versions: IBOS OA version 4.5.5 Description: A critical vulnerability was found in the Delete Draft Handler component, affecting an unknown part of the file at the endpoint "?r=email/api/delDraft&archiveId=0". The manipulation leads to SQL injection, a...
CVE-2023-4713
A vulnerability has been found in IBOS OA 4.5.5 and classified as critical. This vulnerability affects the function addComment of the file ?r=weibo/comment/addcomment. The manipulation of the argument touid leads to sql injection. The exploit has been disclosed to the public and may be used. The...
CVE-2023-4713
A vulnerability has been found in IBOS OA 4.5.5 and classified as critical. This vulnerability affects the function addComment of the file ?r=weibo/comment/addcomment. The manipulation of the argument touid leads to sql injection. The exploit has been disclosed to the public and may be used. The...
Sql injection
A vulnerability has been found in IBOS OA 4.5.5 and classified as critical. This vulnerability affects the function addComment of the file ?r=weibo/comment/addcomment. The manipulation of the argument touid leads to sql injection. The exploit has been disclosed to the public and may be used. The...
CVE-2023-4713 IBOS OA addcomment addComment sql injection
A vulnerability has been found in IBOS OA 4.5.5 and classified as critical. This vulnerability affects the function addComment of the file ?r=weibo/comment/addcomment. The manipulation of the argument touid leads to sql injection. The exploit has been disclosed to the public and may be used. The...
CVE-2023-4713 IBOS OA addcomment addComment sql injection
A vulnerability has been found in IBOS OA 4.5.5 and classified as critical. This vulnerability affects the function addComment of the file ?r=weibo/comment/addcomment. The manipulation of the argument touid leads to sql injection. The exploit has been disclosed to the public and may be used. The...
CVE-2023-4713
The CVE-2023-4713 entry concerns IBOS OA 4.5.5 where the addComment function at ?r=weibo/comment/addcomment is vulnerable to SQL injection via the touid parameter. The vulnerability is described as critical, with potential high impact on confidentiality, integrity, and availability. The root caus...
IBOS SQL Injection Vulnerability
IBOS is a collaborative office management system. An SQL injection vulnerability exists in IBOS OA version 4.5.5, which stems from the fact that incorrect manipulation of the touid in the addComment function of ?r=weibo/comment/addcomment can lead to SQL injection...
CVE-2023-4545
A vulnerability was found in IBOS OA 4.5.5. It has been classified as critical. Affected is an unknown function of the file ?r=recruit/bgchecks/export&checkids=x. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public an...
CVE-2023-4545
A vulnerability was found in IBOS OA 4.5.5. It has been classified as critical. Affected is an unknown function of the file ?r=recruit/bgchecks/export&checkids=x. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public an...
Sql injection
A vulnerability was found in IBOS OA 4.5.5. It has been classified as critical. Affected is an unknown function of the file ?r=recruit/bgchecks/export&checkids=x. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public an...
CVE-2023-4545 IBOS OA export&checkids=x sql injection
A vulnerability was found in IBOS OA 4.5.5. It has been classified as critical. Affected is an unknown function of the file ?r=recruit/bgchecks/export&checkids=x. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public an...
CVE-2023-4545
CVE-2023-4545 affects IBOS OA 4.5.5. The vulnerability is a SQL injection in an unknown function of the file parameter ?r=recruit/bgchecks/export&checkids=x, allowing remote exploitation. Multiple sources confirm the issue and reference VDB-238056; exploitation has been disclosed publicly. There ...