Lucene search
K

50 matches found

Positive Technologies
Positive Technologies
added 2022/08/25 12:0 a.m.5 views

PT-2022-23208 · Blue Prism · Blue Prism Enterprise

Name of the Vulnerable Software and Affected Versions: Blue Prism Enterprise versions 6.0 through 7.01 Description: The issue allows an authenticated user to reverse engineer the software and circumvent access controls for the getChartData administrative function in a misconfigured environment th...

8.1CVSS8.2AI score0.00841EPSS
Exploits0References5
Veracode
Veracode
added 2022/04/14 8:42 a.m.25 views

SQL Injection

apachesuperset is vulnerable to SQL injection. An attacker is able to inject malicious SQL via chart data requests...

9.8CVSS4.2AI score0.02788EPSS
Exploits0References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/04/13 7:15 p.m.4 views

CVE-2022-27479

Apache Superset before 1.4.2 is vulnerable to SQL injection in chart data requests. Users should update to 1.4.2 or higher which addresses this issue...

9.8CVSS5.9AI score0.02788EPSS
Exploits0References4
NVD
NVD
added 2022/04/13 7:15 p.m.20 views

CVE-2022-27479

Apache Superset before 1.4.2 is vulnerable to SQL injection in chart data requests. Users should update to 1.4.2 or higher which addresses this issue...

9.8CVSS0.02788EPSS
Exploits0References3
Prion
Prion
added 2022/04/13 7:15 p.m.20 views

Sql injection

Apache Superset before 1.4.2 is vulnerable to SQL injection in chart data requests. Users should update to 1.4.2 or higher which addresses this issue...

7.5CVSS9.8AI score0.02788EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2022/04/13 7:15 p.m.5 views

PYSEC-2022-188

Apache Superset before 1.4.2 is vulnerable to SQL injection in chart data requests. Users should update to 1.4.2 or higher which addresses this issue...

9.8CVSS8.1AI score0.02788EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/02/05 10:15 p.m.8 views

UBUNTU-CVE-2021-21303

Helm is open-source software which is essentially "The Kubernetes Package Manager". Helm is a tool for managing Charts. Charts are packages of pre-configured Kubernetes resources. In Helm from version 3.0 and before version 3.5.2, there a few cases where data loaded from potentially untrusted...

6.8CVSS7AI score0.0103EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2019/04/05 12:0 a.m.7 views

PT-2019-12079 · Salicru · Slc-20-Cube3

Name of the Vulnerable Software and Affected Versions: Salicru SLC-20-cube35 devices running firmware version cs121-SNMP v4.54.82.130611 Description: A reflected HTML injection issue allows remote attackers to inject arbitrary HTML elements via specific API endpoints, including /DataLog.csv?log=,...

6.1CVSS6.5AI score0.05817EPSS
Exploits5References4
Veracode
Veracode
added 2017/04/07 1:3 a.m.8 views

Remote Code Execution (RCE)

airflow is vulnerable to remote code execution RCE attacks. The attacks are possible because it does not prevent the chartdata endpoints taking arbitrary strings and executing them...

7.9AI score
Exploits0
Packet Storm
Packet Storm
added 2011/08/31 12:0 a.m.28 views

WordPress Crawl Rate Tracker 2.0.2 SQL Injection

Exploit Title: WordPress Crawl Rate Tracker plugin wpdb-getresults"SELECT DATEFROMUNIXTIMEvisittime visitdate,robotname,COUNT total FROM $this-sbtrackingtable WHERE visittime = '$start' AND visittime trackingbotreportchartdata;...

0.3AI score
Exploits0
Rows per page
Query Builder