4 matches found
Sahi Pro 8.x SQL Injection
Exploit Title: Sahi pro :/s/dyn/pro/DBReports?sql=SELECT DISTINCT memoryused AS ROWSTATUS, SCRIPTREPORTS.SCRIPTREPORTID,SCRIPTREPORTS.SCRIPTNAME,SUITEREPORTS. FROM SUITEREPORTS,SCRIPTREPORTS...
Sahi pro 8.x - SQL Injection
Sahi pro 8.x - SQL Injection Exploit Title: Sahi pro :/s/dyn/pro/DBReports?sql=SELECT DISTINCT memoryused AS ROWSTATUS, SCRIPTREPORTS.SCRIPTREPORTID,SCRIPTREPORTS.SCRIPTNAME,SUITEREPORTS. FROM SUITEREPORTS,SCRIPTREPORTS...
Sahi pro 8.x - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Sahi pro :/s/dyn/pro/DBReports?sql=SELECT DISTINCT memoryused AS ROWSTATUS, SCRIPTREPORTS.SCRIPTREPORTID,SCRIPTREPORTS.SCRIPTNAME,SUITEREPORTS. FROM SUITEREPORTS,SCRIPTREPORTS 0day.today 2019-06-18...
CVE-2018-20469
CVE-2018-20469 affects Tyto Sahi Pro (through 7.x.x and 8.0.0). The web reports module contains a parameter vulnerable to h2 SQL injection, enabling arbitrary SQL queries and execution of h2 system functions. Exploitation activity is evidenced by public exploit references (exploit DB, PacketStorm...