CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2020/07/23 2:15 p.m.•9 views

CVE-2020-15884

A SQL injection vulnerability in TableQuery.php in MunkiReport before 5.6.3 allows attackers to execute arbitrary SQL commands via the order0dir field on POST requests to /datatables/data...

8.8CVSS9.2AI score0.00314EPSS

Exploits0References3

Prion•added 2020/07/23 2:15 p.m.•12 views

Sql injection

A SQL injection vulnerability in TableQuery.php in MunkiReport before 5.6.3 allows attackers to execute arbitrary SQL commands via the order0dir field on POST requests to /datatables/data...

6.5CVSS9.1AI score0.00314EPSS

Exploits0References3Affected Software1

CNVD•added 2020/03/10 12:0 a.m.•4 views

MunkiReport SQL Injection Vulnerability

Munkireport is a reporting client for munki. A SQL injection vulnerability exists in app/models/tablequery.php in Munkireport versions prior to 5.3.0. An attacker can exploit this vulnerability to inject arbitrary SQL into webquery via the /datatables/data endpoint...

8.8CVSS8AI score0.00515EPSS

Exploits1References1

OSV•added 2020/03/09 7:15 p.m.•11 views

CVE-2020-10190

An issue was discovered in MunkiReport before 5.3.0. An authenticated user could achieve SQL Injection in app/models/tablequery.php by crafting a special payload on the /datatables/data endpoint...

8.8CVSS7.9AI score

Exploits0References2

NVD•added 2020/03/09 7:15 p.m.•10 views

CVE-2020-10190

An issue was discovered in MunkiReport before 5.3.0. An authenticated user could achieve SQL Injection in app/models/tablequery.php by crafting a special payload on the /datatables/data endpoint...

8.8CVSS9AI score0.00515EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by