EUVD-2020-30140

Malware in sbrugna...

CVE-2020-9318

Red Gate SQL Monitor 9.0.13 through 9.2.14 allows an administrative user to perform a SQL injection attack by configuring the SNMP alert settings in the UI. This is fixed in 9.2.15...

Citrix Analytics: Unable to edit Notification Alert settings to add Citrix Performance adminis

You may be unable to edit Notification Alert settings to add Citrix Performance administrators...

Sql injection

A CWE-89: Improper Neutralization of Special Elements vulnerability used in an SQL Command 'SQL Injection' vulnerability exists that could allow a user already authenticated on DCE to access unauthorized content, change, or delete content, or perform unauthorized actions when tampering with the...

CVE-2023-37196

Schneider Electric StruxureWare Data Center Expert (DCE) pre‑7.9.3 is affected by a CWE-89 SQL Injection due to improper neutralization of special elements. An authenticated DCE user could access, modify, or delete content and tamper with endpoint alert settings. The CVE notes high impact (C/H/I/...

CVE-2022-23238

Linux deployments of StorageGRID formerly StorageGRID Webscale versions 11.6.0 through 11.6.0.2 deployed with a Linux kernel version less than 4.7.0 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to view limited metrics information and modify alert email...

SolarWinds Orion Platform has an unspecified vulnerability (CNVD-2021-101209)

Solarwinds Orion Platform is a network fault and network performance management platform from Solarwinds, Inc. The platform provides real-time monitoring and analysis of network devices, and supports custom web interfaces, multiple user opinions, and map-based views of the entire network. Code...

SolarWinds Orion Platform Cross-Site Scripting Vulnerability (CNVD-2021-101210)

Solarwinds Orion Platform is a network fault and network performance management platform from Solarwinds, Inc. The platform provides real-time monitoring and analysis of network devices and supports custom web interfaces, multiple user opinions, and map-based browsing of the entire network, etc...

SolarWinds Orion Platform has an unspecified vulnerability (CNVD-2021-69604)

Solarwinds Orion Platform is a network fault and network performance management platform from Solarwinds, Inc. The platform provides real-time monitoring and analysis of network devices, and supports custom web interfaces, multiple user opinions, and map-based views of the entire network, etc...

SolarWinds Orion Platform 命令注入漏洞

Solarwinds Orion Platform is a network fault and network performance management platform from Solarwinds, Inc. The platform provides real-time monitoring and analysis of network devices, and supports custom web interfaces, multiple user opinions, and map-based views of the entire network, etc...

SolarWinds Orion Platform 安全漏洞

Solarwinds Orion Platform is a network fault and network performance management platform from Solarwinds, Inc. The platform provides real-time monitoring and analysis of network devices, and supports custom web interfaces, multiple user opinions, and map-based views of the entire network. Code...

SolarWinds Orion Platform 跨站脚本漏洞

Solarwinds Orion Platform is a network fault and network performance management platform from Solarwinds, Inc. The platform provides real-time monitoring and analysis of network devices and supports custom web interfaces, multiple user opinions, and map-based browsing of the entire network, etc...

Redgate SQL Monitor SQL Injection Vulnerability

Redgate SQL Monitor is a Microsoft SQL Server monitoring, alerting and analysis tool for database administrators. Redgate SQL Monitor 9.0.13 - 9.2.14 suffers from a SQL injection vulnerability. The vulnerability can be exploited by administrator users to conduct SQL injection attacks by configuri...

CVE-2020-9318

Red Gate SQL Monitor 9.0.13 through 9.2.14 allows an administrative user to perform a SQL injection attack by configuring the SNMP alert settings in the UI. This is fixed in 9.2.15...

CVE-2020-9318

Affected product/versions: Red Gate SQL Monitor 9.0.13 through 9.2.14. Vulnerability: Administrative users can perform a SQL injection by configuring the SNMP alert settings in the UI. Root cause (as stated): Not explicitly detailed beyond the injection via UI settings. Impact (as stated): SQL in...

CVE-2013-7025

Multiple cross-site scripting XSS vulnerabilities in ematStaticAlertTypes.jsp in the Alert Settings section in Dell SonicWALL Global Management System GMS, Analyzer, and UMA EM5000 7.1 SP1 before Hotfix 134235 allow remote authenticated users to inject arbitrary web script or HTML via the 1...

SonicWALL Gms 7.x - Filter Bypass Persistent

SonicWALL Gms 7.x - Filter Bypass Persistent Document Title: =============== Sonicwall GMS v7.x - Filter Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1099 Bulletin: Dell SonicWALL GMS Service Bulletin for Cross-Site...

SonicWALL Gms 7.x - Filter Bypass / Persistent

Document Title: =============== Sonicwall GMS v7.x - Filter Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1099 Bulletin: Dell SonicWALL GMS Service Bulletin for Cross-Site Scripting Vulnerability...

Sonicwall GMS v7.x - Filter Bypass & Persistent Vulnerability

Document Title: =============== Sonicwall GMS v7.x - Filter Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1099 Bulletin: Dell SonicWALL GMS Service Bulletin for Cross-Site Scripting Vulnerability...

CVE-2002-1981

Microsoft SQL Server 2000 through SQL Server 2000 SP2 allows the "public" role to execute the 1 spMSSetServerProperties or 2 spMSsetalertinfo stored procedures, which allows attackers to modify configuration including SQL server startup and alert settings...