ROS-20250912-06

Vulnerability of pgdump utility of PostgreSQL database management system is related to failure to take measures to protect SQL query structure. protection of SQL query structure. Exploitation of the vulnerability could allow an attacker acting remotely, execute arbitrary code...

The vulnerability of TP-Link M7000 4G LTE Mobile Wi-Fi Router’s microprogramming software lies in the lack of measures taken to protect the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of TP-Link M7000 4G LTE Mobile Wi-Fi Router’s microprogramming software is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by introducing specially crafted SQL code remotel...

The vulnerability of the LockGateway method in the software for managing and monitoring remote devices in telemetry and telemechanics systems allows a hacker to bypass security restrictions and gain access to write and read arbitrary files.

The vulnerability of the LockGateway method in software for managing and monitoring remote devices in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass security restrictio...

The vulnerability of the GetConnectionVariables method in the software for managing and monitoring remote objects in telemetry and telemechanics systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the GetConnectionVariables method in software for controlling and monitoring remote objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to compromise t...

The vulnerability of the software for managing and monitoring remote devices in telemetry and telemechanics systems, related to the lack of measures taken to protect the SQL query structure, allows a perpetrator to execute arbitrary SQL queries.

The vulnerability of software for managing and monitoring remote devices in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

The vulnerability of the software for managing and monitoring remote devices in telemetry and telemechanics systems, related to the lack of measures taken to protect the SQL query structure, allows a perpetrator to execute arbitrary SQL queries.

The vulnerability of software for managing and monitoring remote devices in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

The vulnerability of the software for managing and monitoring remote devices in telemetry and telemechanics systems, related to the lack of measures taken to protect the SQL query structure, allows a perpetrator to execute arbitrary SQL queries.

The vulnerability of software for managing and monitoring remote devices in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

The vulnerability of the dfe_body_copy component in the Virtuoso-OpenSource web application development platform allows a attacker to trigger a service failure.

The vulnerability of the dfebodycopy component in the Virtuoso-OpenSource web application development platform is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to cause service interruptions...

The vulnerability of the IBM Sterling B2B Integrator software for automating business processes lies in the lack of protective measures for the SQL query structure. This allows attackers to gain unauthorized access to read, modify, add, or delete data.

The vulnerability of the IBM Sterling B2B Integrator software for automating business processes is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows an attacker operating remotely to gain unauthorized access to read, modify, add, or...

The vulnerability of Dell PowerScale InsightIQ software for performance monitoring and reporting lies in its lack of protection against SQL query structures, allowing attackers to disclose sensitive information.

The vulnerability of the software for performance monitoring and report generation in Dell PowerScale InsightIQ is related to the lack of security measures in the SQL query structure. Exploiting this vulnerability can allow attackers to disclose sensitive information...

PT-2025-1070 · Dell · Dell Powerscale Insightiq

Name of the Vulnerable Software and Affected Versions: Dell PowerScale InsightIQ affected versions not specified Description: The issue is related to a lack of protection for the SQL query structure in the Dell PowerScale InsightIQ software for performance monitoring and reporting. Exploitation o...

Vulnerability of the SMB microprogramming network device service on QNAP, allowing attackers to execute arbitrary code

The vulnerability of the SMB microprogramming network device software in QNAP is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the database extension of the OpenRefine software for extracting and cleaning tabular data allows a hacker to execute arbitrary code.

The vulnerability of the database extension of the OpenRefine software for extracting and cleaning tabular data is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the Navidrome media server, related to the lack of protective measures for the SQL query structure, allows attackers to execute arbitrary code and disclose the protected information.

The vulnerability of the Navidrome media server relates to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code and disclose sensitive information by sending specially crafted SQL queries...

The vulnerability of the Ivanti EPM endpoint management software lies in the lack of protective measures for the SQL query structure, allowing a hacker to execute arbitrary code.

The vulnerability of the Ivanti EPM endpoint management software relates to the lack of security measures for SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created query...

The vulnerability of the netcat/message_fields.php file in the Netcat CMS system allows a intruder to gain unauthorized access to protected information.

The vulnerability of the netcat/messagefields.php file in the Netcat CMS system is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information from the...

The vulnerability of the WP_Query class in the WordPress content management system allows attackers to expose stored user credentials.

The vulnerability of the WPQuery class in the WordPress content management system is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to access and disclose stored user credentials...

The vulnerability of the CMD_W_REG command processor in the CEAR_MWDI_DFLT_PASSWORD register of the CE805M data collection and transmission device allows a attacker to compromise the integrity of the database or cause service failures.

The vulnerability of the CMDWREG command processor in the CEARMWDIDFLTPASSWORD registry of the CE805M data collection and transmission device is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability could allow an attacker to compromise the...

The vulnerability of the GLPI system’s request, incident, and computer equipment inventory management processes, related to the failure to protect the SQL request structure, allows a perpetrator to execute arbitrary code.

The vulnerability of the GLPI system’s request, incident, and computer equipment inventory management processes is related to the lack of protective measures for the SQL request structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code...

The vulnerability of the framework for creating applications based on the combination of language models (LLMs) like LangChain arises from the lack of protective measures for SQL query structures. This allows attackers to gain unauthorized access to protected information.

The vulnerability of the framework for creating applications based on the combination of language models LLMs like LangChain relates to the lack of measures taken to protect SQL query structures. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized...