51 matches found
CyberPower - SQL Injection
A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. id: CVE-2024-32738 info: name: CyberPower - SQL Injection author: DhiyaneshDk severity: high description: | A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3...
EUVD-2023-43943
Malicious code in bioql PyPI...
CVE-2024-32735
An issue regarding missing authentication for certain utilities exists in CyberPower PowerPanel Enterprise prior to v2.8.3. An unauthenticated remote attacker can access the PDNU REST APIs, which may result in compromise of the application...
VulnCheck KEV: CVE-2024-32738
A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. An unauthenticated remote attacker can leak sensitive information via the "queryptasklean" function within MCUDBHelper...
VulnCheck KEV: CVE-2024-32737
A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. An unauthenticated remote attacker can leak sensitive information via the "querycontractresult" function within MCUDBHelper...
VulnCheck KEV: CVE-2024-32735
An issue regarding missing authentication for certain utilities exists in CyberPower PowerPanel Enterprise prior to v2.8.3. An unauthenticated remote attacker can access the PDNU REST APIs, which may result in compromise of the application...
VulnCheck KEV: CVE-2024-32736
A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. An unauthenticated remote attacker can leak sensitive information via the "queryutaskverbose" function within MCUDBHelper...
The vulnerability of the query_ptask_lean function in the MCUDBHelper component of the PowerPanel Enterprise monitoring and power source management system allows a perpetrator to disclose protected information.
The vulnerability of the queryptasklean function in the MCUDBHelper component of the PowerPanel Enterprise monitoring and power source management system is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability can allow an attacker to disclose...
The vulnerability of the query_contract_result function in the MCUDBHelper component of the corporate version of the PowerPanel Enterprise monitoring and control system allows a perpetrator to disclose protected information.
The vulnerability of the querycontractresult function in the MCUDBHelper component of the corporate version of the PowerPanel Enterprise monitoring and power source management system is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability can allow...
The vulnerability of the query_utask_verbose function in the MCUDBHelper component of the corporate version of the PowerPanel Enterprise monitoring and power source management system allows a perpetrator to disclose protected information.
The vulnerability of the queryutaskverbose function in the MCUDBHelper component of the PowerPanel Enterprise monitoring and power management system is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability can allow an attacker to disclose sensitive...
The vulnerability of the corporate version of the PowerPanel Enterprise monitoring and power source management system lies in the lack of authentication for critical functions, allowing attackers to gain unauthorized access to the application.
The vulnerability of the corporate version of the PowerPanel Enterprise monitoring and power source management system is related to the lack of authentication for a critical function. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to the...
Cyber Power Systems PowerPanel 安全漏洞
Cyber Power Systems PowerPanel Enterprise is a software program from Cyber Power Systems designed to provide real-time PUE, PUE trends, and total energy use trends. A security vulnerability exists in Cyber Power Systems PowerPanel versions 4.9.0 and earlier, which stems from the use of identical...
Cyber Power Systems PowerPanel 授权问题漏洞
Cyber Power Systems PowerPanel Enterprise is a software from Cyber Power Systems designed to provide real-time PUE, PUE trends, and total energy usage trends. An authorization issue vulnerability exists in Cyber Power Systems PowerPanel version 4.9.0 and prior versions, which arises from improper...
CVE-2024-32737
A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. An unauthenticated remote attacker can leak sensitive information via the "querycontractresult" function within MCUDBHelper...
CVE-2024-32738
A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. An unauthenticated remote attacker can leak sensitive information via the "queryptasklean" function within MCUDBHelper...
CVE-2024-32738
A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. An unauthenticated remote attacker can leak sensitive information via the "queryptasklean" function within MCUDBHelper...
CVE-2024-32736
A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. An unauthenticated remote attacker can leak sensitive information via the "queryutaskverbose" function within MCUDBHelper...
CVE-2024-32736
A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. An unauthenticated remote attacker can leak sensitive information via the "queryutaskverbose" function within MCUDBHelper...
CVE-2024-32735
An issue regarding missing authentication for certain utilities exists in CyberPower PowerPanel Enterprise prior to v2.8.3. An unauthenticated remote attacker can access the PDNU REST APIs, which may result in compromise of the application...
Cyber Power Systems PowerPanel Enterprise 安全漏洞
Cyber Power Systems PowerPanel Enterprise is a software program from Cyber Power Systems designed to provide real-time PUE, PUE trends, and total energy use trends. A security vulnerability exists in Cyber Power Systems PowerPanel Enterprise prior to version v2.8.3 that stems from an SQL injectio...