Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:9 a.m.6 views

CVE-2019-19245

NAPC Xinet Elegant 6 Asset Library 6.1.655 allows Pre-Authentication SQL Injection via the /elegant6/login LoginFormusername field when double quotes are used...

9.8CVSS8.1AI score0.07941EPSS
Exploits3References1
Circl
Circl
added 2025/02/02 11:26 a.m.9 views

CVE-2019-19245

creationtimestamp| type| source ---|---|--- 2025-02-02 11:26:15+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/3789 2025-02-03 08:53:13+00:00| seen| https://bsky.app/profile/hacker.at.thenote.app/post/3lhb64vdklk2n 2025-02-06 02:39:09+00:00| seen|...

9.8CVSS8.7AI score0.07941EPSS
Exploits3References3
Check Point Advisories
Check Point Advisories
added 2020/11/16 12:0 a.m.55 views

NAPC Xinet Elegant 6 Asset Library SQL injection (CVE-2019-19245)

An SQL injection vulnerability exists in NAPC Xinet Elegant 6 Asset Library. Successful exploitation of this vulnerability could result in the execution of arbitrary SQL statements on the affected system...

7.5CVSS4AI score0.07941EPSS
Exploits3
CVE
CVE
added 2019/12/02 1:54 p.m.63 views

CVE-2019-19245

NAPC Xinet Elegant 6 Asset Library Web Interface v6.1.655 is affected by a Pre-Authentication SQL Injection in the /elegant6/login endpoint via the LoginForm[username] field when double quotes are used. Root cause is lack of input validation allowing SQL statements to be injected before authentic...

9.8CVSS9.9AI score0.07941EPSS
Exploits3References3Affected Software1
0day.today
0day.today
added 2019/11/30 12:0 a.m.193 views

Xinet Elegant 6 Asset Library Web Interface 6.1.655 SQL Injection Vulnerability

NAPC Xinet interface Elegant 6 Asset Library version 6.1.655 allows pre-authentication error-based SQL injection via the /elegant6/login LoginFormusername field when double quotes are used. + Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source:...

10AI score0.07941EPSS
Exploits3
Rows per page
Query Builder