3 matches found
Suprema BioStar 2
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION : Exploitable remotely/low attack complexity/public exploits are available Vendor : Suprema Inc. Equipment : BioStar 2 Vulnerability : SQL Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to...
Suprema BioStar 2 v2.8.16 - SQL Injection Vulnerability
Exploit Title: Suprema BioStar 2 v2.8.16 - SQL Injection Exploit Author: Yuriy Vander Tsarenko https://www.linkedin.com/in/yuriy-tsarenko-a1453aa4/ Vendor Homepage: https://www.supremainc.com/ Software Link: https://www.supremainc.com/en/platform/hybrid-security-platform-biostar-2.asp Software...
CVE-2023-27167
Summary of CVE-2023-27167 (Suprema BioStar 2) : A SQL injection vulnerability exists in BioStar 2 v2.8.16 where the flaw occurs via the values parameter in the absence endpoint (examples mention /users/absence?search_month=1 or /api/users/absence?search_month=1). The root cause is improper neutra...