4 matches found
CVE-2023-36663
it-novum openITCOCKPIT aka open IT COCKPIT 4.6.4 before 4.6.5 allows SQL Injection by authenticated users via the sort parameter of the API interface...
CVE-2023-36663
OpenITCOCKPIT (It-novum) 4.6.4 is vulnerable to SQL injection via the API interface’s sort parameter when accessed by authenticated users, due to a flaw in the input handling. Affects versions 4.6.4 prior to 4.6.5. Mitigation: upgrade to 4.6.5 or apply vendor-provided security update; as a tempor...
CVE-2023-36663
it-novum openITCOCKPIT aka open IT COCKPIT 4.6.4 before 4.6.5 allows SQL Injection by authenticated users via the sort parameter of the API interface...
CVE-2023-36663
it-novum openITCOCKPIT aka open IT COCKPIT 4.6.4 before 4.6.5 allows SQL Injection by authenticated users via the sort parameter of the API interface...