CVE-2022-26514
CVE-2022-26514 affects Delta Electronics DIAEnergie (all versions prior to 1.9.0.0). The issue is a blind SQL injection in the DIAE_tagHandler.ashx component, enabling an attacker to inject arbitrary SQL, retrieve/modify database contents, and potentially execute system commands. The vulnerabilit...