17 matches found
CVE-2024-34328
An open redirect in Sielox AnyWare v2.1.2 allows attackers to execute a man-in-the-middle attack via a crafted URL...
EUVD-2024-54842
Malicious code in bioql PyPI...
EUVD-2024-54841
Malicious code in bioql PyPI...
CVE-2024-34327
Sielox AnyWare v2.1.2 was discovered to contain a SQL injection vulnerability via the email address field of the password reset form...
CVE-2024-34327
Sielox AnyWare v2.1.2 was discovered to contain a SQL injection vulnerability via the email address field of the password reset form...
CVE-2024-34327
Sielox AnyWare v2.1.2 was discovered to contain a SQL injection vulnerability via the email address field of the password reset form...
CVE-2024-34328
An open redirect in Sielox AnyWare v2.1.2 allows attackers to execute a man-in-the-middle attack via a crafted URL...
PT-2025-31557 · Sielox · Sielox Anyware
Name of the Vulnerable Software and Affected Versions: Sielox AnyWare version 2.1.2 Description: The software contains a SQL injection issue via the email address field of the password reset form. Recommendations: Apply input validation and sanitization to the email address field in the password...
CVE-2024-34327
Sielox AnyWare v2.1.2 is affected by CVE-2024-34327, a SQL injection through the email field in the password-reset form. The connected exploit document provides a time-based blind PoC targeting the POST endpoint /auth/password-reset-token.php, using the email parameter and a SLEEP() payload to de...
CVE-2024-34328
An open redirect in Sielox AnyWare v2.1.2 allows attackers to execute a man-in-the-middle attack via a crafted URL...
CVE-2024-34327
Sielox AnyWare v2.1.2 was discovered to contain a SQL injection vulnerability via the email address field of the password reset form...
Sielox AnyWare 安全漏洞
Sielox AnyWare is an access control system from Sielox USA. A security vulnerability exists in Sielox AnyWare version v2.1.2, which stems from an unvalidated email address field in the password reset form, which could lead to SQL injection...
CVE-2024-34327
Sielox AnyWare v2.1.2 was discovered to contain a SQL injection vulnerability via the email address field of the password reset form...
CVE-2024-34328
An open redirect in Sielox AnyWare v2.1.2 allows attackers to execute a man-in-the-middle attack via a crafted URL...
CVE-2024-34328
Sielox AnyWare v2.1.2 is affected by an open redirect vulnerability that can enable a man-in-the-middle attack via a crafted URL. The condition is a redirect flaw in the application’s flow, not necessarily authenticated user actions, leading to potential interception or manipulation of traffic. T...
Sielox AnyWare 安全漏洞
Sielox AnyWare is an access control system from Sielox USA. A security vulnerability exists in Sielox AnyWare version v2.1.2, which stems from an open redirect and could lead to a man-in-the-middle attack...
Exploit for SQL Injection in Sielox Anyware
CVE-2024-34327 SQL Injection Vulnerability Checker This scrip...