Lucene search
K

4 matches found

Nuclei
Nuclei
added 15 hours ago11 views

Schneider Electric U.motion Builder - SQL Injection

The vulnerability exists within processing of trackimportexport.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. The underlying SQLite database query is subject to SQL injection on the objectid input parameter. id: CVE-2018-7765 info: name: Schneider Electric U.motion...

8.8CVSS7.2AI score0.02917EPSS
Exploits3References2
NVD
NVD
added 2018/07/03 2:29 p.m.15 views

CVE-2018-7765

The vulnerability exists within processing of trackimportexport.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. The underlying SQLite database query is subject to SQL injection on the objectid input parameter...

8.8CVSS9.3AI score0.02917EPSS
Exploits3References2
CVE
CVE
added 2018/07/03 2:0 p.m.89 views

CVE-2018-7765

Schneider Electric U.motion Builder is affected by CVE-2018-7765 via track_import_export.php, where the SQLite query on object_id is vulnerable to SQL injection. Affected versions are prior to v1.3.4. Exploitation could lead to arbitrary SQL execution with high impact (C/H/I/H) as per CVSS3, with...

8.8CVSS9.4AI score0.02917EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2018/07/03 2:0 p.m.21 views

CVE-2018-7765

The vulnerability exists within processing of trackimportexport.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. The underlying SQLite database query is subject to SQL injection on the objectid input parameter...

9.3AI score0.02917EPSS
Exploits3References2
Rows per page
Query Builder