ROS-20250311-07

PQescapeLiteral, PQescapeIdentifier, PQescapeString and PQescapeStringConn functions are vulnerable to vulnerability libpq library of PostgreSQL database management system is related to failure to take measures to protect SQL query structure. Exploitation of the vulnerability could allow an...

The vulnerability of the ArcGIS Server server, related to the lack of measures taken to protect the SQL query structure, allows attackers to enhance their privileges and execute arbitrary code.

The vulnerability of the ArcGIS Server server is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to enhance their privileges and execute arbitrary code...

The vulnerability of the Centreon-web component of the Centreon software for monitoring IT infrastructure allows a perpetrator to influence the confidentiality, accessibility, and integrity of the protected information.

The vulnerability of the centreon-web component of the IT infrastructure monitoring software relates to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to influence the confidentiality, accessibility, and integrity of the protect...

The vulnerability in the host_templates.php script of the Cacti network monitoring software allows a hacker to execute arbitrary code.

The vulnerability of the hosttemplates.php script of the Cacti network monitoring software is related to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary code...

The vulnerability of the IBM Sterling B2B Integrator software for automating business processes lies in the lack of protective measures for the SQL query structure. This allows attackers to gain unauthorized access to read, modify, add, or delete data.

The vulnerability of the IBM Sterling B2B Integrator software for automating business processes is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows an attacker operating remotely to gain unauthorized access to read, modify, add, or...

The vulnerability of the web interface for managing microprogramming software-based network storage devices STEALTHONE D220 and D340 allows a intruder to gain unauthorized access to protected information.

The vulnerability of the web interface for managing microprogramming software-based network storage devices STEALTHONE D220 and D340 is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability can allow an attacker, operating remotely, to gain...

The vulnerability of the Amazon Redshift Python Connector driver lies in the lack of security measures for SQL query structures, allowing attackers to exploit their privileges.

The vulnerability of the Amazon Redshift Python Connector driver is related to the lack of security measures for SQL query structures. Exploiting this vulnerability can allow an attacker to enhance their privileges remotely...

The vulnerability of the Ivanti EPM endpoint management software lies in the lack of protective measures for the SQL query structure, allowing a hacker to execute malicious code remotely.

The vulnerability of the Ivanti EPM endpoint management software relates to the lack of security measures for SQL query structures. Exploiting this vulnerability allows a remote attacker to execute malicious code remotely...

ROS-20250109-04

Vulnerability of the Fields plug-in of the GLPI system of requests, incidents and inventory of computer equipment is related to failure to take measures to protect the SQL query structure. Exploitation of the vulnerability could allow An attacker acting remotely could execute arbitrary SQL code...

The vulnerability of the Fields plugin in the GLPI system for managing requests, incidents, and inventory of computer equipment arises from the lack of protection for the SQL query structure. This allows attackers to execute arbitrary SQL code.

The vulnerability of the Fields plugin in the GLPI system for managing requests, incidents, and inventory of computer equipment is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL code remotely...

The vulnerability of the library for optimizing machine learning models in Intel Neural Compressor allows attackers to exploit it by bypassing security measures related to SQL query structures, thereby enabling them to enhance their privileges.

The vulnerability of the Intel Neural Compressor library for optimizing machine learning models is related to the lack of protective measures for SQL query structures. Exploiting this vulnerability can allow attackers to enhance their privileges remotely...

The vulnerability in the virtual learning environment Moodle, related to the lack of measures to protect the SQL query structure, allows attackers to execute arbitrary SQL queries in the database.

The vulnerability in the virtual training environment Moodle is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries in the database remotely...

The vulnerability of the Ivanti Endpoint Manager software for managing endpoints in information networks arises from the lack of protective measures for the SQL query structure, allowing a perpetrator to execute arbitrary code.

The vulnerability of the Ivanti Endpoint Manager software for managing endpoints in information networks relates to the lack of security measures taken to protect the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the AWV component (Audio, Web, and Video Conferencing) of the Mitel MiCollab collaboration platform allows a perpetrator to execute arbitrary code.

The vulnerability of the AWV component Audio, Web, and Video Conferencing is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability in the web interface of the Cisco Secure Firewall Management Center (formerly known as Cisco Firepower Management Center) relates to the lack of protective measures for the SQL query structure, allowing an attacker to execute arbitrary code.

The vulnerability in the web interface of the Cisco Secure Firewall Management Center formerly known as Cisco Firepower Management Center relates to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remote...

The vulnerability of the EdOnline EMS system allows a perpetrator to disclose protected information.

The vulnerability of the EdOnline EMS educational process management system is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...

The vulnerability of the centreon-web component of the Centreon software for monitoring IT infrastructure allows a perpetrator to enhance their privileges and execute arbitrary code.

The vulnerability of the centreon-web component of the IT infrastructure monitoring software lies in the lack of protective measures for the SQL query structure. This allows attackers to enhance their privileges and execute arbitrary code using a specially created SQL query...

The vulnerability of the LoadMotherboardTable method in the Ivanti EPM endpoint management software allows a hacker to execute arbitrary code.

The vulnerability of the LoadMotherboardTable method in the Ivanti EPM endpoint management software is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the updateAssetInfo method in the Ivanti EPM endpoint management software allows a hacker to execute arbitrary code.

The vulnerability of the updateAssetInfo method in the Ivanti EPM endpoint management software is related to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the Ivanti EPM endpoint management software lies in the lack of protective measures for the SQL query structure, allowing a hacker to execute arbitrary code.

The vulnerability of the Ivanti EPM endpoint management software relates to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by injecting specially crafted SQL code remotely...