Lucene search
+L

45 matches found

prion
prion
added 2019/09/30 1:15 p.m.15 views

Sql injection

eBrigade before 5.0 has evenementical.php evenement SQL Injection...

6.5CVSS8.9AI score0.01743EPSS
Exploits1References2Affected Software1
prion
prion
added 2019/09/30 1:15 p.m.14 views

Sql injection

eBrigade before 5.0 has evenementchoice.php chxCal SQL Injection...

6.5CVSS8.9AI score0.01743EPSS
Exploits1References2Affected Software1
prion
prion
added 2019/09/30 1:15 p.m.18 views

Sql injection

eBrigade before 5.0 has evenements.php cid SQL Injection...

6.5CVSS8.9AI score0.01743EPSS
Exploits1References2Affected Software1
cve
cve
added 2019/09/30 12:14 p.m.96 views

CVE-2019-16745

CVE-2019-16745 affects eBrigade prior to version 5.0, where SQL injection exists in evenement_choice.php chxCal. The vulnerability stems from unvalidated inputs in the SQL statements, enabling unauthorized manipulation of the database. Red Hat and CNVD entries corroborate the issue, and a public ...

8.8CVSS8.9AI score0.01743EPSS
Exploits1References2Affected Software1
cvelist
cvelist
added 2019/09/30 12:14 p.m.26 views

CVE-2019-16745

eBrigade before 5.0 has evenementchoice.php chxCal SQL Injection...

9AI score0.01743EPSS
Exploits1References2
cve
cve
added 2019/09/30 12:13 p.m.90 views

CVE-2019-16744

CVE-2019-16744 affects the eBrigade web application prior to version 5.0. The vulnerability is a SQL injection in evenements.php (cid parameter as described in multiple sources), allowing an attacker to execute arbitrary SQL commands via the application’s input. Impact is reported as high in CVE ...

8.8CVSS8.9AI score0.01743EPSS
Exploits1References2Affected Software1
cvelist
cvelist
added 2019/09/30 12:13 p.m.31 views

CVE-2019-16744

eBrigade before 5.0 has evenements.php cid SQL Injection...

9AI score0.01743EPSS
Exploits1References2
cve
cve
added 2019/09/30 12:6 p.m.86 views

CVE-2019-16743

CVE-2019-16743 concerns eBrigade prior to 5.0, which contains a SQL Injection in the evenement_ical.php endpoint. The vulnerability arises from improper handling of user input in this script, enabling attackers to inject SQL commands. Exploitation details are not explicitly provided in the includ...

8.8CVSS8.9AI score0.01743EPSS
Exploits1References2Affected Software1
cvelist
cvelist
added 2019/09/30 12:6 p.m.32 views

CVE-2019-16743

eBrigade before 5.0 has evenementical.php evenement SQL Injection...

9AI score0.01743EPSS
Exploits1References2
cnvd
cnvd
added 2019/09/29 12:0 a.m.4 views

eBrigade SQL Injection Vulnerability (CNVD-2019-35770)

eBrigade is a rescue team management system. The system includes personnel management, vehicle management and equipment management. A SQL injection vulnerability exists in eBrigade versions prior to 5.0, which can be exploited by attackers to execute illegal SQL commands...

8.8CVSS8.2AI score0.01743EPSS
Exploits1References1
cnvd
cnvd
added 2019/09/29 12:0 a.m.2 views

eBrigade SQL Injection Vulnerability

eBrigade is a rescue team management system. The system includes personnel management, vehicle management and equipment management. A SQL injection vulnerability exists in eBrigade versions prior to 5.0. The vulnerability stems from a lack of validation of externally entered SQL statements in...

8.8CVSS8.2AI score0.01743EPSS
Exploits1References1
cnvd
cnvd
added 2019/09/29 12:0 a.m.5 views

eBrigade SQL Injection Vulnerability (CNVD-2019-35774)

eBrigade is a rescue team management system. The system includes personnel management, vehicle management and equipment management. A SQL injection vulnerability exists in eBrigade versions prior to 5.0, which can be exploited by attackers to execute illegal SQL commands...

8.8CVSS8.2AI score0.01743EPSS
Exploits1References1
packetstorm
packetstorm
added 2019/09/26 12:0 a.m.200 views

eBrigade SQL Injection

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple SQL Injection vulnerabilities product: eBrigade vulnerable version: =5.0 CVE number: CVE-2019-16743, CVE-2019-16744, CVE-2019-16745 impact: critical homepage:...

0.5AI score0.01743EPSS
Exploits1
nvd
nvd
added 2019/03/07 5:29 a.m.20 views

CVE-2019-9622

eBrigade through 4.5 allows Arbitrary File Download via ../ directory traversal in the showfile.php file parameter, as demonstrated by reading the user-data/save/backup.sql file...

4.3CVSS4.7AI score0.04796EPSS
Exploits1References3
osv
osv
added 2019/03/07 5:29 a.m.2 views

CVE-2019-9622

eBrigade through 4.5 allows Arbitrary File Download via ../ directory traversal in the showfile.php file parameter, as demonstrated by reading the user-data/save/backup.sql file...

4.3CVSS5.8AI score0.04796EPSS
Exploits1References3
prion
prion
added 2019/03/07 5:29 a.m.16 views

Directory traversal

eBrigade through 4.5 allows Arbitrary File Download via ../ directory traversal in the showfile.php file parameter, as demonstrated by reading the user-data/save/backup.sql file...

4CVSS4.8AI score0.04796EPSS
Exploits1References3Affected Software1
cve
cve
added 2019/03/07 5:0 a.m.42 views

CVE-2019-9622

CVE-2019-9622 affects eBrigade (up to version 4.5) and enables Arbitrary File Download through a ../ directory traversal in the showfile.php parameter, demonstrated by accessing user-data/save/backup.sql. The root cause is unsafely handling path input in showfile.php, allowing retrieval of files ...

4.3CVSS4.7AI score0.04796EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2019/03/07 5:0 a.m.23 views

CVE-2019-9622

eBrigade through 4.5 allows Arbitrary File Download via ../ directory traversal in the showfile.php file parameter, as demonstrated by reading the user-data/save/backup.sql file...

4.7AI score0.04796EPSS
Exploits1References3
zdt
zdt
added 2019/01/11 12:0 a.m.22 views

eBrigade ERP 4.5 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: eBrigade ERP 4.5 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://ebrigade.net/ Software Link: https://netcologne.dl.sourceforge.net/project/ebrigade/ebrigade/eBrigade%204.5/ebrigade4.5.zip Version: 4.5...

0.1AI score
Exploits0
zdt
zdt
added 2019/01/11 12:0 a.m.15 views

eBrigade ERP 4.5 - Arbitrary File Download Exploit

Exploit for php platform in category web applications !/usr/bin/python import mechanize, sys, cookielib, requests import colorama, urllib, re, random, urllib2 import wget from colorama import Fore from tqdm import tqdm from pathlib import Path def bannerche: print ''' @email protected | eBrigade...

7.4AI score
Exploits0
Rows per page
Query Builder