Lucene search
K

25 matches found

OSV
OSV
added 2017/12/18 4:29 p.m.4 views

CVE-2017-17721

CWEBNET/WOSummary/List in ZUUSE BEIMS ContractorWeb .NET 5.18.0.0 allows SQL injection via the tradestatus, assetno, assignto, building, domain, jobtype, site, trade, woType, workorderno, or workorderstatus parameter...

9.8CVSS5.8AI score0.03596EPSS
Exploits4References6
NVD
NVD
added 2017/12/18 4:29 p.m.30 views

CVE-2017-17721

CWEBNET/WOSummary/List in ZUUSE BEIMS ContractorWeb .NET 5.18.0.0 allows SQL injection via the tradestatus, assetno, assignto, building, domain, jobtype, site, trade, woType, workorderno, or workorderstatus parameter...

9.8CVSS9.9AI score0.03596EPSS
Exploits4References6
Prion
Prion
added 2017/12/18 4:29 p.m.14 views

Sql injection

CWEBNET/WOSummary/List in ZUUSE BEIMS ContractorWeb .NET 5.18.0.0 allows SQL injection via the tradestatus, assetno, assignto, building, domain, jobtype, site, trade, woType, workorderno, or workorderstatus parameter...

7.5CVSS9.8AI score0.03596EPSS
Exploits4References6Affected Software1
Cvelist
Cvelist
added 2017/12/18 4:0 p.m.32 views

CVE-2017-17721

CWEBNET/WOSummary/List in ZUUSE BEIMS ContractorWeb .NET 5.18.0.0 allows SQL injection via the tradestatus, assetno, assignto, building, domain, jobtype, site, trade, woType, workorderno, or workorderstatus parameter...

9.9AI score0.03596EPSS
Exploits4References6
CVE
CVE
added 2017/12/18 4:0 p.m.69 views

CVE-2017-17721

CVE-2017-17721 describes an SQL injection vulnerability in ZUUSE BEIMS ContractorWeb .NET 5.18.0.0, specifically in WEBNET/WOSummary/List (CWEBNET/WOSummary/List). The underlying issue allows injection via multiple parameters: tradestatus, assetno, assignto, building, domain, jobtype, site, trade...

9.8CVSS9.8AI score0.03596EPSS
Exploits4References6Affected Software1
Rows per page
Query Builder