Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

30 matches found

Cvelist
Cvelistadded 2024/12/05 12:0 a.m.13 views

CVE-2024-41579

DTStack Taier 1.4.0 allows remote attackers to specify the jobName parameter in the console listNames function to cause a SQL injection vulnerability...

0.0318EPSS
Exploits0References2
CVE
CVEadded 2024/12/05 12:0 a.m.71 views

CVE-2024-41579

DTStack Taier 1.4.0 contains a SQL injection vulnerability: remote attackers can influence the jobName parameter in the console listNames function, enabling unauthenticated access to manipulate queries. The underlying issue is an input handling flaw allowing injection. No exploitation specifics a...

9.8CVSS7.9AI score0.0318EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/12/05 12:0 a.m.9 views

CVE-2024-41579

DTStack Taier 1.4.0 allows remote attackers to specify the jobName parameter in the console listNames function to cause a SQL injection vulnerability...

9.7AI score0.0318EPSS
Exploits0References2
NVD
NVDadded 2023/06/23 12:15 p.m.7 views

CVE-2023-29860

An insecure permissions in /Taier/API/tenant/listTenant interface in DTStack Taier 1.3.0 allows attackers to view sensitive information via the getCookie method...

7.5CVSS7.3AI score0.0009EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2023/06/23 12:15 p.m.2 views

CVE-2023-29860

An insecure permissions in /Taier/API/tenant/listTenant interface in DTStack Taier 1.3.0 allows attackers to view sensitive information via the getCookie method...

7.5CVSS7.1AI score0.0009EPSS
Exploits1References2
Prion
Prionadded 2023/06/23 12:15 p.m.7 views

Security feature bypass

An insecure permissions in /Taier/API/tenant/listTenant interface in DTStack Taier 1.3.0 allows attackers to view sensitive information via the getCookie method...

5CVSS7.3AI score0.0009EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/06/23 12:0 a.m.6 views

CVE-2023-29860

An insecure permissions in /Taier/API/tenant/listTenant interface in DTStack Taier 1.3.0 allows attackers to view sensitive information via the getCookie method...

6.4AI score0.0009EPSS
Exploits1References1
Cvelist
Cvelistadded 2023/06/23 12:0 a.m.12 views

CVE-2023-29860

An insecure permissions in /Taier/API/tenant/listTenant interface in DTStack Taier 1.3.0 allows attackers to view sensitive information via the getCookie method...

7.5AI score0.0009EPSS
Exploits1References1
CVE
CVEadded 2023/06/23 12:0 a.m.37 views

CVE-2023-29860

DTStack Taier 1.3.0 is affected by CVE-2023-29860. The vulnerability is due to insecure permissions on the /Taier/API/tenant/listTenant interface, which allows an attacker to view sensitive information via the getCookie method. Documented impact is viewing sensitive data; CVSS v3.1 base score is ...

7.5CVSS7.2AI score0.0009EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologiesadded 2023/06/23 12:0 a.m.2 views

PT-2023-22451 · Dtstack · Dtstack Taier

Name of the Vulnerable Software and Affected Versions: DTStack Taier version 1.3.0 Description: The issue is related to insecure permissions in the "/Taier/API/tenant/listTenant" interface, allowing attackers to view sensitive information via the getCookie method. Recommendations: For DTStack Tai...

7.5CVSS7.2AI score0.0009EPSS
Exploits1References4
Rows per page
Query Builder