Lucene search
K

13 matches found

BDU FSTEC
BDU FSTEC
added 2025/07/23 12:0 a.m.7 views

The vulnerability of the BuildEnterpriseSearchString method implemented by the PolicyServer server of the Trend Micro Endpoint Encryption (TMEE) encryption data solution allows a perpetrator to increase their privileges.

The vulnerability of the BuildEnterpriseSearchString method implemented by the PolicyServer server of the Trend Micro Endpoint Encryption TMEE encryption data solution is related to the lack of security measures for the SQL query structure. Exploiting this vulnerability can allow an attacker...

9CVSS7.7AI score0.0011EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/13 12:0 a.m.6 views

The vulnerability of the synchronization application for Qsync Central files relates to the lack of security measures for the SQL query structure, allowing a hacker to execute arbitrary code.

The vulnerability of the Qsync Central file synchronization application is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS6.1AI score0.00385EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/14 12:0 a.m.4 views

The vulnerability of the Safari browser on macOS, iOS, and iPadOS operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Safari browser in operating systems macOS, iOS, and iPadOS is related to the lack of security measures for handling SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS6AI score0.00827EPSS
Exploits0References5Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/04/01 12:0 a.m.4 views

The vulnerability of the CLI component of the Fortinet FortiManager device management software and the FortiAnalyzer and FortiAnalyzer-BigData security event monitoring and analysis tools allows a attacker to execute arbitrary commands or code.

The vulnerability of the CLI component of the Fortinet FortiManager device management software, as well as the FortiAnalyzer and FortiAnalyzer-BigData security event monitoring and analysis tools, is related to the lack of protective measures for the SQL query structure. Exploiting this...

4.3CVSS6AI score0.00171EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/03/24 12:0 a.m.3 views

The vulnerability of the VMmanager 6 virtualization tool, related to the lack of protective measures for the SQL query structure, allows attackers to execute arbitrary SQL queries against the database.

The vulnerability of VMmanager 6’s virtualization mechanism is related to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries against the database remotely...

9CVSS5.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/20 12:0 a.m.4 views

The vulnerability of the LoadSlotsTable method in the Ivanti EPM endpoint management software allows a hacker to execute arbitrary code.

The vulnerability of the LoadSlotsTable method in the Ivanti EPM endpoint management software is related to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.1CVSS8.2AI score0.43356EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/05 12:0 a.m.7 views

The vulnerability of the XStore plugin of the WordPress content management system allows a hacker to execute arbitrary SQL queries against the database.

The vulnerability of the XStore plugin of the WordPress content management system is related to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries against the database...

9.3CVSS8.2AI score0.03553EPSS
Exploits3References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/14 12:0 a.m.4 views

The vulnerability of the PostgreSQL data anonymization extension in the PostgreSQL Anonymizer tool lies in the lack of security measures for SQL query structures. This allows attackers to elevate their privileges to superuser levels.

The vulnerability of the PostgreSQL anonymization extension in the PostgreSQL Anonymizer database relates to the lack of security measures for SQL query structures. Exploiting this vulnerability allows a malicious actor, operating remotely, to elevate their privileges to the level of superuser...

8CVSS7.6AI score0.00461EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/10/30 12:0 a.m.3 views

The vulnerability of the Tutor LMS plugin for the WordPress content management system allows a hacker to execute arbitrary code.

The vulnerability of the Tutor LMS plugin for the WordPress content management system is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

6.4CVSS6.9AI score0.01347EPSS
Exploits2References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/10/27 12:0 a.m.5 views

The vulnerability of the JDBCAppender adapter in the Log4j Java logging library allows a malicious actor to execute arbitrary SQL queries against the database.

The vulnerability of the JDBCAppender component in Log4j, a Java logging library, relates to the lack of security measures for SQL query structures. Exploiting this vulnerability allows an attacker to execute arbitrary SQL queries against the database remotely...

10CVSS7.6AI score0.66537EPSS
Exploits1References7Affected Software31
CNNVD
CNNVD
added 2023/03/20 12:0 a.m.3 views

Gentoo SQL注入漏洞

Gentoo is an open source Linux system from the Gentoo Foundation. A SQL injection vulnerability exists in Gentoo Soko versions prior to 1.0.2, which stems from a SQL injection vulnerability found in pkg/app/handler/packages/search.go...

9.8CVSS8.8AI score0.0115EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/12/24 12:0 a.m.8 views

The vulnerability of the “company_filter” parameter in the “user_list” component of the Advantech R-SeeNet monitoring software allows a hacker to execute arbitrary SQL queries.

The vulnerability of the “companyfilter” parameter in the “userlist” component of the Advantech R-SeeNet monitoring software for router status and functions is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execu...

7.7CVSS5.9AI score0.01134EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2018/04/04 12:0 a.m.10 views

The vulnerability of the NVBUBackup request handler’s software for data archiving and restoration by NetVault Backup allows a perpetrator to execute arbitrary code.

The vulnerability of the NVBUBackup request handler in software for data archiving and restoration by NetVault Backup is related to insufficient protection of the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9.8CVSS6.1AI score0.03933EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder