3 matches found
CVE-2024-4547 Delta Electronics DIAEnergie Unauthenticated SQL Injection
A SQLi vulnerability exists in Delta Electronics DIAEnergie v1.10.1.8610 and prior when CEBC.exe processes a 'RecalculateScript' message, which is splitted into 4 fields using the '' character as the separator. An unauthenticated remote attacker can perform SQLi via the fourth field...
CVE-2024-4547
CVE-2024-4547 affects Delta Electronics DIAEnergie, versions 1.10.1.8610 and earlier. The vulnerability arises when CEBC.exe processes a 'RecalculateScript' message that is split into four fields by the '~' separator; the attacker can perform unauthenticated SQL injection via the fourth field. Do...
CVE-2024-4547 Delta Electronics DIAEnergie Unauthenticated SQL Injection
A SQLi vulnerability exists in Delta Electronics DIAEnergie v1.10.1.8610 and prior when CEBC.exe processes a 'RecalculateScript' message, which is splitted into 4 fields using the '' character as the separator. An unauthenticated remote attacker can perform SQLi via the fourth field...