CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2025/05/23 10:17 a.m.•4 views

CVE-2024-30922

SQL Injection vulnerability in DerbyNet v9.0 allows a remote attacker to execute arbitrary code via the where Clause in Award Document Rendering...

9.8CVSS8.7AI score0.0493EPSS

Exploits2References1

OSV•added 2024/04/18 9:15 p.m.•1 views

CVE-2024-30922

SQL Injection vulnerability in DerbyNet v9.0 allows a remote attacker to execute arbitrary code via the where Clause in Award Document Rendering...

9.8CVSS6.3AI score0.0493EPSS

Exploits2References2

NVD•added 2024/04/18 9:15 p.m.•10 views

CVE-2024-30922

SQL Injection vulnerability in DerbyNet v9.0 allows a remote attacker to execute arbitrary code via the where Clause in Award Document Rendering...

9.8CVSS8.3AI score0.0493EPSS

Exploits2References2

Cvelist•added 2024/04/18 12:0 a.m.•10 views

CVE-2024-30922

SQL Injection vulnerability in DerbyNet v9.0 allows a remote attacker to execute arbitrary code via the where Clause in Award Document Rendering...

8.7AI score0.0493EPSS

Exploits2References1

CVE•added 2024/04/18 12:0 a.m.•57 views

CVE-2024-30922

DerbyNet v9.0 is affected by CVE-2024-30922: a SQL Injection in print/render/award.inc allows a remote attacker to execute arbitrary code via the where clause in Award Document Rendering. Exploitation is reported as unauthenticated/remote in multiple sources. Affected component: DerbyNet 9.0, mod...

9.8CVSS8.7AI score0.0493EPSS

Exploits2References2Affected Software1