14 matches found
EUVD-2022-37783
Malicious code in bioql PyPI...
CVE-2022-34877
SQL Injection vulnerability in AST Agent Time Sheet interface /vicidial/ASTagenttimesheet.php of VICIdial via the agent parameter allows attacker to spoof identity, tamper with existing data, allow the complete disclosure of all data on the system, destroy the data or make it otherwise unavailabl...
CVE-2022-34879
Reflected Cross Site Scripting XSS vulnerabilities in AST Agent Time Sheet interface /vicidial/ASTagenttimesheet.php of VICIdial via agent, and searcharchiveddata parameters. This issue affects: VICIdial 2.14b0.5 versions prior to 3555...
CVE-2022-34877
SQL Injection vulnerability in AST Agent Time Sheet interface /vicidial/ASTagenttimesheet.php of VICIdial via the agent parameter allows attacker to spoof identity, tamper with existing data, allow the complete disclosure of all data on the system, destroy the data or make it otherwise unavailabl...
CVE-2022-34879
Reflected Cross Site Scripting XSS vulnerabilities in AST Agent Time Sheet interface /vicidial/ASTagenttimesheet.php of VICIdial via agent, and searcharchiveddata parameters. This issue affects: VICIdial 2.14b0.5 versions prior to 3555...
Cross site scripting
Reflected Cross Site Scripting XSS vulnerabilities in AST Agent Time Sheet interface /vicidial/ASTagenttimesheet.php of VICIdial via agent, and searcharchiveddata parameters. This issue affects: VICIdial 2.14b0.5 versions prior to 3555...
Sql injection
SQL Injection vulnerability in AST Agent Time Sheet interface /vicidial/ASTagenttimesheet.php of VICIdial via the agent parameter allows attacker to spoof identity, tamper with existing data, allow the complete disclosure of all data on the system, destroy the data or make it otherwise unavailabl...
CVE-2022-34879 VICIDial 2.14b0.5 SVN 3550 was discovered to contain multiple Cross Site Scripting (XSS) vulnerabilities at /vicidial/admin.php.
Reflected Cross Site Scripting XSS vulnerabilities in AST Agent Time Sheet interface /vicidial/ASTagenttimesheet.php of VICIdial via agent, and searcharchiveddata parameters. This issue affects: VICIdial 2.14b0.5 versions prior to 3555...
CVE-2022-34879
CVE-2022-34879 is a VICIdial XSS in the AST_agent_time_sheet.php interface, triggered via agent and search_archived_data parameters. The vulnerability affects VICIdial 2.14b0.5 versions prior to 3555. The connected records consistently describe a reflected XSS with client-side script execution ri...
CVE-2022-34877
CVE-2022-34877 is an authenticated SQL injection in VICIdial 2.14b0.5 prior to SVN revision 3555. The vulnerability occurs in the AST Agent Time Sheet interface via the /vicidial/AST_agent_time_sheet.php endpoint, specifically through the agent parameter, enabling an attacker to spoof identity, t...
CVE-2022-34877 VICIDial 2.14b0.5 SVN 3550 was discovered to contains a SQL injection vulnerability at /vicidial/AST_agent_time_sheet.php.
SQL Injection vulnerability in AST Agent Time Sheet interface /vicidial/ASTagenttimesheet.php of VICIdial via the agent parameter allows attacker to spoof identity, tamper with existing data, allow the complete disclosure of all data on the system, destroy the data or make it otherwise unavailabl...
VICIdial SQL注入漏洞
VICIdial is a software suite from VICIdial, Inc. designed to interact with the Asterisk open source Pbx telephony system as a complete inbound/outbound contact center suite with inbound email support. A SQL injection vulnerability exists in VICIdial versions prior to 2.14b0.5, which stems from a...
VICIdial 跨站脚本漏洞
Vicidial is a software suite from Vicidial, Inc. Designed to interact with the Asterisk open source Pbx phone system as a complete inbound/outbound contact center suite with inbound email support. A cross-site scripting vulnerability exists in VICIdial versions prior to 2.14b0.5, which stems from...
CVE-2022-34877
SQL Injection vulnerability in AST Agent Time Sheet interface /vicidial/ASTagenttimesheet.php of VICIdial via the agent parameter allows attacker to spoof identity, tamper with existing data, allow the complete disclosure of all data on the system, destroy the data or make it otherwise unavailabl...