Lucene search
+L

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:7 a.m.8 views

CVE-2024-34534

A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module aka textcommander 16.0 through 16.0.1 allows a remote attacker to gain privileges via the data parameter to models/irmodel.py:IrModel::chechmodel...

7.3CVSS7.6AI score0.00497EPSS
Exploits0References1
NVD
NVD
added 2024/05/06 9:15 p.m.19 views

CVE-2024-34534

A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module aka textcommander 16.0 through 16.0.1 allows a remote attacker to gain privileges via the data parameter to models/irmodel.py:IrModel::chechmodel...

7.3CVSS7.7AI score0.00497EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/06 12:0 a.m.13 views

CVE-2024-34534

A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module aka textcommander 16.0 through 16.0.1 allows a remote attacker to gain privileges via the data parameter to models/irmodel.py:IrModel::chechmodel...

8.1AI score0.00497EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/06 12:0 a.m.24 views

CVE-2024-34534

A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module aka textcommander 16.0 through 16.0.1 allows a remote attacker to gain privileges via the data parameter to models/irmodel.py:IrModel::chechmodel...

8AI score0.00497EPSS
Exploits0References1
CVE
CVE
added 2024/05/06 12:0 a.m.64 views

CVE-2024-34534

CVE-2024-34534 affects Cybrosys Techno Solutions Text Commander module (text_commander) versions 16.0–16.0.1. A SQL injection via the data parameter to models/ir_model.py:IrModel::chech_model allows a remote attacker to gain privileges. CVSS v3.1: Networking, Low confidentiality/integrity/availab...

7.3CVSS8.1AI score0.00497EPSS
Exploits0References1
NVD
NVD
added 2023/12/15 12:15 a.m.18 views

CVE-2023-48049

A SQL injection vulnerability in Cybrosys Techno Solutions Website Blog Search aka websitesearchblog v. 13.0 through 13.0.1.0.1 allows a remote attacker to execute arbitrary code and to gain privileges via the name parameter in controllers/main.py component...

9.8CVSS0.01005EPSS
Exploits1References1
Prion
Prion
added 2023/12/15 12:15 a.m.15 views

Sql injection

A SQL injection vulnerability in Cybrosys Techno Solutions Website Blog Search aka websitesearchblog v. 13.0 through 13.0.1.0.1 allows a remote attacker to execute arbitrary code and to gain privileges via the name parameter in controllers/main.py component...

7.5CVSS9.2AI score0.01005EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/12/14 12:0 a.m.22 views

CVE-2023-48049

A SQL injection vulnerability in Cybrosys Techno Solutions Website Blog Search aka websitesearchblog v. 13.0 through 13.0.1.0.1 allows a remote attacker to execute arbitrary code and to gain privileges via the name parameter in controllers/main.py component...

10AI score0.01005EPSS
Exploits1References1
CVE
CVE
added 2023/12/14 12:0 a.m.36 views

CVE-2023-48049

CVE-2023-48049 affects Cybrosys Techno Solutions Website Blog Search (aka website_search_blog) versions 13.0–13.0.1.0.1. The issue is a SQL injection in the name parameter of the controllers/main.py component, allowing a remote attacker to execute arbitrary code and gain privileges. Impact is des...

9.8CVSS9.8AI score0.01005EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder