9 matches found
CVE-2024-34534
A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module aka textcommander 16.0 through 16.0.1 allows a remote attacker to gain privileges via the data parameter to models/irmodel.py:IrModel::chechmodel...
CVE-2024-34534
A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module aka textcommander 16.0 through 16.0.1 allows a remote attacker to gain privileges via the data parameter to models/irmodel.py:IrModel::chechmodel...
CVE-2024-34534
A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module aka textcommander 16.0 through 16.0.1 allows a remote attacker to gain privileges via the data parameter to models/irmodel.py:IrModel::chechmodel...
CVE-2024-34534
A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module aka textcommander 16.0 through 16.0.1 allows a remote attacker to gain privileges via the data parameter to models/irmodel.py:IrModel::chechmodel...
CVE-2024-34534
CVE-2024-34534 affects Cybrosys Techno Solutions Text Commander module (text_commander) versions 16.0–16.0.1. A SQL injection via the data parameter to models/ir_model.py:IrModel::chech_model allows a remote attacker to gain privileges. CVSS v3.1: Networking, Low confidentiality/integrity/availab...
CVE-2023-48049
A SQL injection vulnerability in Cybrosys Techno Solutions Website Blog Search aka websitesearchblog v. 13.0 through 13.0.1.0.1 allows a remote attacker to execute arbitrary code and to gain privileges via the name parameter in controllers/main.py component...
Sql injection
A SQL injection vulnerability in Cybrosys Techno Solutions Website Blog Search aka websitesearchblog v. 13.0 through 13.0.1.0.1 allows a remote attacker to execute arbitrary code and to gain privileges via the name parameter in controllers/main.py component...
CVE-2023-48049
A SQL injection vulnerability in Cybrosys Techno Solutions Website Blog Search aka websitesearchblog v. 13.0 through 13.0.1.0.1 allows a remote attacker to execute arbitrary code and to gain privileges via the name parameter in controllers/main.py component...
CVE-2023-48049
CVE-2023-48049 affects Cybrosys Techno Solutions Website Blog Search (aka website_search_blog) versions 13.0–13.0.1.0.1. The issue is a SQL injection in the name parameter of the controllers/main.py component, allowing a remote attacker to execute arbitrary code and gain privileges. Impact is des...