2 matches found
rConfig <= 3.9.6 Multiple Vulnerabilities
rConfig is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2020-23149
CVE-2020-23149 affects rConfig 3.9.5. The vulnerability arises from the dbName parameter in ajaxDbInstall.php being unsanitized, enabling SQL injection to access sensitive database information. Multiple connected records (NVD, CNVD, Red Hat, CNVD, PRION, OpenVAS, etc.) corroborate the same root c...