Lucene search
K

4 matches found

Circl
Circl
added 2022/07/05 8:13 p.m.8 views

CVE-2022-34877

creationtimestamp| type| source ---|---|--- 2022-07-05 20:13:34+00:00| seen| https://t.me/cibsecurity/45606 2022-09-22 15:12:31+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/vicidialmultiplesqli.rb 2025-02-06 03:13:45+00:00| seen|...

9CVSS8.2AI score0.03139EPSS
Exploits1References2
NVD
NVD
added 2022/07/05 4:15 p.m.21 views

CVE-2022-34877

SQL Injection vulnerability in AST Agent Time Sheet interface /vicidial/ASTagenttimesheet.php of VICIdial via the agent parameter allows attacker to spoof identity, tamper with existing data, allow the complete disclosure of all data on the system, destroy the data or make it otherwise unavailabl...

9CVSS0.03139EPSS
Exploits1References2
OSV
OSV
added 2022/07/05 4:15 p.m.2 views

CVE-2022-34877

SQL Injection vulnerability in AST Agent Time Sheet interface /vicidial/ASTagenttimesheet.php of VICIdial via the agent parameter allows attacker to spoof identity, tamper with existing data, allow the complete disclosure of all data on the system, destroy the data or make it otherwise unavailabl...

8.8CVSS7.4AI score0.03139EPSS
Exploits1References2
CVE
CVE
added 2022/07/05 3:40 p.m.64 views

CVE-2022-34877

CVE-2022-34877 is an authenticated SQL injection in VICIdial 2.14b0.5 prior to SVN revision 3555. The vulnerability occurs in the AST Agent Time Sheet interface via the /vicidial/AST_agent_time_sheet.php endpoint, specifically through the agent parameter, enabling an attacker to spoof identity, t...

9CVSS7.7AI score0.03139EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder