3 matches found
PT-2024-31655 · Delta Electronics · Diaenergie
Name of the Vulnerable Software and Affected Versions: Delta Electronics DIAEnergie versions 1.10.1.8610 and prior Description: A SQL injection vulnerability exists when CEBC.exe processes a 'RecalculateScript' message, which is split into 4 fields using the '' character as the separator. An...
PT-2022-26951 · Delta Electronics · Delta Electronics Diaenergie
Name of the Vulnerable Software and Affected Versions: Delta Electronics DIAEnergie versions prior to v1.9.02.001 Description: The issue allows an attacker to inject SQL queries via the network. This is related to SQL Injection in HandlerTag KID.ashx. Recommendations: For versions prior to...
PT-2022-26004 · Unknown · Diaenergie
Name of the Vulnerable Software and Affected Versions: DIAEnergie versions prior to v1.9.01.002 Description: The issue concerns a stored cross-site scripting vulnerability. This vulnerability can be exploited through the SetPF API. Recommendations: For versions prior to v1.9.01.002, update to...