45 matches found
CVE-2019-25707
eBrigade ERP 4.5 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers can send GET requests to pdf.php with crafted SQL payloads in the 'id' parameter to extract sensitive...
CVE-2019-25707
eBrigade ERP 4.5 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers can send GET requests to pdf.php with crafted SQL payloads in the 'id' parameter to extract sensitive...
CVE-2019-25707 eBrigade ERP 4.5 SQL Injection via pdf.php
eBrigade ERP 4.5 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers can send GET requests to pdf.php with crafted SQL payloads in the 'id' parameter to extract sensitive...
CVE-2019-25707 eBrigade ERP 4.5 SQL Injection via pdf.php
eBrigade ERP 4.5 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers can send GET requests to pdf.php with crafted SQL payloads in the 'id' parameter to extract sensitive...
CVE-2019-25707
The CVE-2019-25707 entry affects eBrigade ERP 4.5, where an SQL injection exists in pdf.php via the id parameter. Authenticated attackers can send crafted GET requests to retrieve arbitrary SQL results, including table names and database schema details. Documents consistently describe this as a v...
PT-2026-32169
eBrigade ERP 4.5 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers can send GET requests to pdf.php with crafted SQL payloads in the 'id' parameter to extract sensitive...
eBrigade ERP SQL注入漏洞
eBrigade ERP is a comprehensive business system for enterprise resource planning management developed by the French company eBrigade. Version 4.5 of eBrigade ERP contains a SQL injection vulnerability, which stems from insufficient input validation for the id parameter in the pdf.php file. This...
CVE-2019-16745
eBrigade before 5.0 has evenementchoice.php chxCal SQL Injection...
CVE-2019-16743
eBrigade before 5.0 has evenementical.php evenement SQL Injection...
CVE-2019-16744
eBrigade before 5.0 has evenements.php cid SQL Injection...
EUVD-2019-7283
Malware in sbrugna...
EUVD-2019-18993
Malware in sbrugna...
EUVD-2019-7284
Malware in sbrugna...
EUVD-2019-7285
Malware in sbrugna...
CVE-2019-16745
eBrigade before 5.0 has evenementchoice.php chxCal SQL Injection...
CVE-2019-16744
eBrigade before 5.0 has evenements.php cid SQL Injection...
CVE-2019-16744
eBrigade before 5.0 has evenements.php cid SQL Injection...
CVE-2019-16743
eBrigade before 5.0 has evenementical.php evenement SQL Injection...
CVE-2019-16745
eBrigade before 5.0 has evenementchoice.php chxCal SQL Injection...
CVE-2019-16743
eBrigade before 5.0 has evenementical.php evenement SQL Injection...