4 matches found
CVE-2022-34877
creationtimestamp| type| source ---|---|--- 2022-07-05 20:13:34+00:00| seen| https://t.me/cibsecurity/45606 2022-09-22 15:12:31+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/vicidialmultiplesqli.rb 2025-02-06 03:13:45+00:00| seen|...
CVE-2022-34877
SQL Injection vulnerability in AST Agent Time Sheet interface /vicidial/ASTagenttimesheet.php of VICIdial via the agent parameter allows attacker to spoof identity, tamper with existing data, allow the complete disclosure of all data on the system, destroy the data or make it otherwise unavailabl...
CVE-2022-34877
SQL Injection vulnerability in AST Agent Time Sheet interface /vicidial/ASTagenttimesheet.php of VICIdial via the agent parameter allows attacker to spoof identity, tamper with existing data, allow the complete disclosure of all data on the system, destroy the data or make it otherwise unavailabl...
CVE-2022-34877
CVE-2022-34877 is an authenticated SQL injection in VICIdial 2.14b0.5 prior to SVN revision 3555. The vulnerability occurs in the AST Agent Time Sheet interface via the /vicidial/AST_agent_time_sheet.php endpoint, specifically through the agent parameter, enabling an attacker to spoof identity, t...