28 matches found
EUVD-2021-10427
Malware in sbrugna...
EUVD-2023-46737
Malicious code in bioql PyPI...
EUVD-2023-46738
Malicious code in bioql PyPI...
CVE-2023-42283
Blind SQL injection in apiid parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...
CVE-2023-42284
Blind SQL injection in apiversion parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...
CVE-2023-42284
Blind SQL injection in apiversion parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...
CVE-2023-42283
Blind SQL injection in apiid parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...
CVE-2023-42283
Blind SQL injection in apiid parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...
CVE-2023-42283
Blind SQL injection in apiid parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...
CVE-2023-42284
Blind SQL injection in apiversion parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...
Sql injection
Blind SQL injection in apiversion parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...
Sql injection
Blind SQL injection in apiid parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...
Tyk Gateway Security Vulnerability
Tyk Gateway is a cloud-based, open-source API gateway open-sourced by Tyk Technologies. A security vulnerability exists in Tyk Gateway version 5.0.3. An attacker exploited the vulnerability to access and dump a database via a specially crafted SQL query...
Tyk Gateway Security Vulnerability
Tyk Gateway is a cloud-based, open-source API gateway open-sourced by Tyk Technologies. A security vulnerability exists in Tyk Gateway version 5.0.3. An attacker exploited the vulnerability to access and dump a database via a specially crafted SQL query...
CVE-2023-42284
CVE-2023-42284 concerns Tyk Gateway 5.0.3. The vulnerability is a blind SQL injection in the API parameter api_version , enabling an attacker to access and dump the database via a crafted query. Reported impact is high (database exposure/compromise) with CVSS 3.1 base score 9.8 (CRITICAL) from NV...
CVE-2023-42283
The CVE-2023-42283 issue affects Tyk Gateway 5.0.3, where a blind SQL injection in the api_id parameter enables an attacker to access and dump the database. The root cause is the lack of input handling for the api_id parameter in the affected endpoint, as described in multiple sources. A PoC/expl...
CVE-2023-42284
Blind SQL injection in apiversion parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...
CVE-2023-42283
Blind SQL injection in apiid parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...
CVE-2023-42283
Blind SQL injection in apiid parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...
CVE-2023-42284
Blind SQL injection in apiversion parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query...