8 matches found
CVE-2022-44290
webTareas 2.4p5 was discovered to contain a SQL injection vulnerability via the id parameter in deleteapprovalstages.php...
CVE-2022-44290
webTareas 2.4p5 was discovered to contain a SQL injection vulnerability via the id parameter in deleteapprovalstages.php...
Sql injection
webTareas 2.4p5 was discovered to contain a SQL injection vulnerability via the id parameter in deleteapprovalstages.php...
webTareas SQL注入漏洞
webTareas is a web-based open source collaboration tool. The product supports features such as project management, bug tracking, content management and meeting management. A security vulnerability exists in webTareas version 2.4p5, which originates from an SQL injection via the id parameter in...
CVE-2022-44290
webTareas 2.4p5 was discovered to contain a SQL injection vulnerability via the id parameter in deleteapprovalstages.php...
PT-2022-27169 · Webtareas · Webtareas
Name of the Vulnerable Software and Affected Versions: webTareas version 2.4p5 Description: A SQL injection issue was found in webTareas via the id parameter in the "deleteapprovalstages.php" endpoint. This allows for potential exploitation. Recommendations: For webTareas version 2.4p5, avoid usi...
CVE-2022-44290
webTareas 2.4p5 was discovered to contain a SQL injection vulnerability via the id parameter in deleteapprovalstages.php...
CVE-2022-44290
WebTareas 2.4p5 contains a SQL injection in deleteapprovalstages.php via the id parameter. Nuclei details describe an authenticated time-based blind SQL injection that can extract sensitive data (tasks, user credentials, projects). CVSS v3.1 base score 9.8 (CRITICAL). Remediation guidance: upgrad...