7 matches found
EUVD-2025-31078
Malicious code in bioql PyPI...
CVE-2025-40698
SQL injection vulnerability in Prevengos v2.44 by Nedatec Consulting. This vulnerability allows an attacker to retrieve, create, update, and delete databases by sending a POST request using the parameters “mpsCentroin”, “mpsEmpresa”, “mpsProyecto”, and “mpsContrata” in...
CVE-2025-40698 SQL injection vulnerability in Prevengos
SQL injection vulnerability in Prevengos v2.44 by Nedatec Consulting. This vulnerability allows an attacker to retrieve, create, update, and delete databases by sending a POST request using the parameters “mpsCentroin”, “mpsEmpresa”, “mpsProyecto”, and “mpsContrata” in...
CVE-2025-40698 SQL injection vulnerability in Prevengos
SQL injection vulnerability in Prevengos v2.44 by Nedatec Consulting. This vulnerability allows an attacker to retrieve, create, update, and delete databases by sending a POST request using the parameters “mpsCentroin”, “mpsEmpresa”, “mpsProyecto”, and “mpsContrata” in...
CVE-2025-40698
CVE-2025-40698 concerns Prevengos, a vulnerability in Prevengos v2.44 by Nedatec Consulting. A SQL injection is triggered via a POST to the API endpoint "/servicios/autorizaciones.asmx/mfsRecuperarListado" using the parameters mpsCentroin , mpsEmpresa , mpsProyecto , and mpsContrata . The affecte...
PT-2025-39362
Name of the Vulnerable Software and Affected Versions Prevengos version 2.44 Description A SQL injection issue exists in Prevengos version 2.44 by Nedatec Consulting. This allows an attacker to retrieve, create, update, and delete databases. The issue is triggered by sending a POST request to the...
Prevengos SQL注入漏洞
Prevengos is a risk prevention management software from the Brazilian company Prevengos. An SQL injection vulnerability exists in Prevengos version v2.44, which originates from an incorrect manipulation of the parameters mpsCentroin, mpsEmpresa, mpsProyecto, and mpsContrata are incorrectly...