Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OpenVAS
OpenVASadded 2022/08/26 12:0 a.m.8 views

Ubuntu: Security Advisory (USN-5301-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.1AI score0.00431EPSS
Exploits0References2
Cloud Foundry
Cloud Foundryadded 2022/04/21 12:0 a.m.41 views

USN-5301-1: Cyrus SASL vulnerability | Cloud Foundry

Severity High Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that the Cyrus SASL SQL plugin incorrectly handled SQL input. A remote attacker could use this issue to execute arbitrary SQL commands. CVEs contained in this USN include: CVE-2022-24407...

8.8CVSS9.3AI score0.00431EPSS
Exploits0Affected Software3
Amazon
Amazonadded 2022/03/10 12:0 a.m.50 views

Important: cyrus-sasl

Issue Overview: A flaw was found in the SQL plugin shipped with Cyrus SASL. Failure to properly escape the SQL input allows a remote attacker to execute arbitrary SQL commands. This issue can lead to the escalation of privileges. CVE-2022-24407 Affected Packages: cyrus-sasl Issue Correction: Run...

8.8CVSS9AI score0.00431EPSS
Exploits0
Amazon
Amazonadded 2022/03/08 12:0 a.m.48 views

Important: cyrus-sasl

Issue Overview: A flaw was found in the SQL plugin shipped with Cyrus SASL. Failure to properly escape the SQL input allows a remote attacker to execute arbitrary SQL commands. This issue can lead to the escalation of privileges. CVE-2022-24407 Affected Packages: cyrus-sasl Note: This advisory is...

8.8CVSS9.1AI score0.00431EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2022/02/23 2:33 p.m.3 views

cyrus-sasl: failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands

A flaw was found in the SQL plugin shipped with Cyrus SASL. The vulnerability occurs due to failure to properly escape SQL input and leads to an improper input validation vulnerability. This flaw allows an attacker to execute arbitrary SQL commands and the ability to change the passwords for othe...

8.8CVSS7.4AI score0.00431EPSS
Exploits0References5
OpenVAS
OpenVASadded 2022/02/23 12:0 a.m.6 views

Ubuntu: Security Advisory (USN-5301-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.1AI score0.00431EPSS
Exploits0References2
CNNVD
CNNVDadded 2022/02/22 12:0 a.m.2 views

Cyrus Sasl SQL注入漏洞

Cyrus Sasl is a simple authentication from The Cyrus Team team. Enables application developers to easily integrate authentication mechanisms into applications in a generic way. Cyrus SASL A SQL injection vulnerability exists that stems from the Cyrus SASL SQL plugin incorrectly handling SQL input...

8.8CVSS8.2AI score0.00431EPSS
Exploits0References67
Tenable Nessus
Tenable Nessusadded 1999/09/08 12:0 a.m.67 views

Mini SQL w3-msql Arbitrary Directory Access (deprecated)

This plugin has been deprecated due to the age of the vulnerability and unreliability of the plugin. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2020/12/02. Deprecated due to age of the vulnerability an unreliability of the plugin. include"compat.inc"; ifdescription scriptid10143;...

7.5CVSS6.9AI score0.0322EPSS
Exploits0References2
Rows per page
Query Builder