3 matches found
CVE-2021-38481
CVE-2021-38481 is an SQL Injection vulnerability in the scheduler service of AUVESY Versiondog. The issue arises from lack of sanitation of the supplied JOB ID, enabling an attacker to send a payload that could cause SQL expressions to be executed. Affected are Versiondog deployments prior to the...
CVE-2021-38481 AUVESY Versiondog
The scheduler service running on a specific TCP port enables the user to start and stop jobs. There is no sanitation of the supplied JOB ID provided to the function. An attacker may send a malicious payload that can enable the user to execute another SQL expression by sending a specific string...
CVE-2021-38481
The scheduler service running on a specific TCP port enables the user to start and stop jobs. There is no sanitation of the supplied JOB ID provided to the function. An attacker may send a malicious payload that can enable the user to execute another SQL expression by sending a specific string...