19 matches found
EUVD-2023-51571
Malicious code in bioql PyPI...
CVE-2023-47459
An issue in Knovos Discovery v.22.67.0 allows a remote attacker to obtain sensitive information via the /DiscoveryReview/Service/CaseManagement.svc/GetProductSiteName component...
CVE-2023-47460
SQL injection vulnerability in Knovos Discovery v.22.67.0 allows a remote attacker to execute arbitrary code via the /DiscoveryProcess/Service/Admin.svc/getGridColumnStructure component...
CVE-2023-47459
An issue in Knovos Discovery v.22.67.0 allows a remote attacker to obtain sensitive information via the /DiscoveryReview/Service/CaseManagement.svc/GetProductSiteName component...
CVE-2023-47460
SQL injection vulnerability in Knovos Discovery v.22.67.0 allows a remote attacker to execute arbitrary code via the /DiscoveryProcess/Service/Admin.svc/getGridColumnStructure component...
CVE-2023-47459
An issue in Knovos Discovery v.22.67.0 allows a remote attacker to obtain sensitive information via the /DiscoveryReview/Service/CaseManagement.svc/GetProductSiteName component...
CVE-2023-47460
SQL injection vulnerability in Knovos Discovery v.22.67.0 allows a remote attacker to execute arbitrary code via the /DiscoveryProcess/Service/Admin.svc/getGridColumnStructure component...
Information disclosure
An issue in Knovos Discovery v.22.67.0 allows a remote attacker to obtain sensitive information via the /DiscoveryReview/Service/CaseManagement.svc/GetProductSiteName component...
Sql injection
SQL injection vulnerability in Knovos Discovery v.22.67.0 allows a remote attacker to execute arbitrary code via the /DiscoveryProcess/Service/Admin.svc/getGridColumnStructure component...
CVE-2023-47459
An issue in Knovos Discovery v.22.67.0 allows a remote attacker to obtain sensitive information via the /DiscoveryReview/Service/CaseManagement.svc/GetProductSiteName component...
CVE-2023-47460
SQL injection vulnerability in Knovos Discovery v.22.67.0 allows a remote attacker to execute arbitrary code via the /DiscoveryProcess/Service/Admin.svc/getGridColumnStructure component...
Knovos Discovery Security Vulnerability
Knovos Discovery is a comprehensive legal discovery platform from Knovos, Inc. A security vulnerability exists in Knovos Discovery version v.22.67.0, which originated from a vulnerability that allows remote attackers to obtain sensitive information via the...
CVE-2023-47460
SQL injection vulnerability in Knovos Discovery v.22.67.0 allows a remote attacker to execute arbitrary code via the /DiscoveryProcess/Service/Admin.svc/getGridColumnStructure component...
CVE-2023-47459
An issue in Knovos Discovery v.22.67.0 allows a remote attacker to obtain sensitive information via the /DiscoveryReview/Service/CaseManagement.svc/GetProductSiteName component...
Knovos Discovery Security Vulnerability
Knovos Discovery is a comprehensive legal discovery platform from Knovos. A security vulnerability exists in Knovos Discovery version v.22.67.0, which stems from the presence of a SQL injection vulnerability that allows remote attackers to execute arbitrary code via the...
CVE-2023-47460
CVE-2023-47460 affects Knovos Discovery v.22.67.0. A SQL injection in the endpoint /DiscoveryProcess/Service/Admin.svc/getGridColumnStructure lets a remote attacker execute arbitrary code with high impact (C,H/I,H/A,H) and network attack vector. Public references in Red Hat, NVD, CNNVD, and other...
CVE-2023-47459
CVE-2023-47459 concerns Knovos Discovery v.22.67.0. The issue enables a remote attacker to obtain sensitive information via the endpoint "/DiscoveryReview/Service/CaseManagement.svc/GetProductSiteName". The available connected sources confirm the affected version and the specific component path, ...
PT-2023-30458 · Knovos · Knovos Discovery
Name of the Vulnerable Software and Affected Versions: Knovos Discovery version 22.67.0 Description: A SQL injection issue allows a remote attacker to execute arbitrary code via the "/DiscoveryProcess/Service/Admin.svc/getGridColumnStructure" component. This enables the attacker to potentially...
PT-2023-30457 · Knovos · Knovos Discovery
Name of the Vulnerable Software and Affected Versions: Knovos Discovery version 22.67.0 Description: An issue in the software allows a remote attacker to obtain sensitive information via the "/DiscoveryReview/Service/CaseManagement.svc/GetProductSiteName" component. Recommendations: For Knovos...