Lucene search
K

8 matches found

NVD
NVD
added 2023/04/15 2:15 a.m.31 views

CVE-2022-45030

A SQL injection vulnerability in rConfig 3.9.7 exists via lib/ajaxHandlers/ajaxCompareGetCmdDates.php?command= this may interact with secure-file-priv...

8.8CVSS9AI score0.02685EPSS
Exploits4References2
CVE
CVE
added 2023/04/15 12:0 a.m.59 views

CVE-2022-45030

Summary: CVE-2022-45030 is a SQL injection in rConfig 3.9.7 via the endpoint lib/ajaxHandlers/ajaxCompareGetCmdDates.php?command= (may interact with secure-file-priv). Multiple sources (NVD, Red Hat, CVE List, CN) classify the impact as high (CVSS v3.1: 8.8, HIGH) with network access, low user in...

8.8CVSS9AI score0.02685EPSS
Exploits4References2Affected Software1
Cvelist
Cvelist
added 2023/04/15 12:0 a.m.35 views

CVE-2022-45030

A SQL injection vulnerability in rConfig 3.9.7 exists via lib/ajaxHandlers/ajaxCompareGetCmdDates.php?command= this may interact with secure-file-priv...

9.2AI score0.02685EPSS
Exploits4References2
NVD
NVD
added 2021/08/20 7:15 p.m.18 views

CVE-2020-27466

An arbitrary file write vulnerability in lib/AjaxHandlers/ajaxEditTemplate.php of rConfig 3.9.6 allows attackers to execute arbitrary code via a crafted file...

7.8CVSS0.01894EPSS
Exploits0References1
Prion
Prion
added 2021/08/20 7:15 p.m.15 views

Arbitrary file deletion

An arbitrary file write vulnerability in lib/AjaxHandlers/ajaxEditTemplate.php of rConfig 3.9.6 allows attackers to execute arbitrary code via a crafted file...

6.8CVSS7.8AI score0.01894EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/08/20 6:10 p.m.22 views

CVE-2020-27466

An arbitrary file write vulnerability in lib/AjaxHandlers/ajaxEditTemplate.php of rConfig 3.9.6 allows attackers to execute arbitrary code via a crafted file...

7.8AI score0.01894EPSS
Exploits0References1
CVE
CVE
added 2021/08/20 6:10 p.m.51 views

CVE-2020-27466

CVE-2020-27466 affects rConfig 3.9.6. The vulnerability is in lib/AjaxHandlers/ajaxEditTemplate.php and is described as an arbitrary file write that allows an attacker to execute arbitrary code via a crafted file. Publicly available connected documents corroborate this as the core issue; however,...

7.8CVSS7.8AI score0.01894EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2019/11/05 12:0 a.m.33 views

rConfig < 3.9.3 Multiple RCE Vulnerabilities - Version Check

rConfig is prone to multiple remote code execution RCE vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS9.7AI score0.97702EPSS
Exploits11References3
Rows per page
Query Builder