2 matches found
AZL-9672 CVE-2022-29155 affecting package openldap for versions less than 2.4.57-7
In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend to slapd, via a SQL statement within an LDAP query. This can occur during an LDAP search operation when the search filter is processed, due to a lack of proper escaping...
portsmouthdiocese.org.uk XSS vulnerability
Open Bug Bounty ID: OBB-639505 Description| Value ---|--- Affected Website:| portsmouthdiocese.org.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...