2 matches found
CVE-2022-25880
Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in HandlerTagKID.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...
CVE-2022-25880
Summary: CVE-2022-25880 is a blind SQL injection vulnerability in Delta Electronics DIAEnergie prior to 1.8.02.004, specifically in GetDemandAnalysisData-related paths (notably HandlerTag_KID.ashx). The issue allows injecting arbitrary SQL, potentially exposing or modifying database contents and ...