CVE-2022-1376

Delta Electronics DIAEnergie (industrial energy management) is affected by a blind SQL injection vulnerability in multiple handlers, including DIAE_privgrpHandler.ashx, with all versions prior to 1.9 affected according to ICS Update C information. The vulnerability can allow an attacker to inject...

CVE-2022-1376

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in DIAEprivgrpHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

CVE-2022-1376

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in DIAEprivgrpHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

CVE-2022-1375

CVE-2022-1375 affects Delta Electronics DIAEnergie (all versions prior to 1.8.02.004) with a blind SQL injection in DIAE_slogHandler.ashx. The vulnerability allows an attacker to inject arbitrary SQL, retrieve/modify database contents, and potentially execute system commands. Several connected so...

CVE-2022-1375

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in DIAEslogHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

CVE-2022-1375

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in DIAEslogHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

CVE-2022-1374

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in DIAEunHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

CVE-2022-1374

Delta Electronics DIAEnergie is affected by a blind SQL injection in GetDemandAnalysisData and various handlers (e.g., DIAE_unHandler.ashx) across all versions prior to 1.8.02.004. The vulnerability allows an attacker to inject arbitrary SQL, retrieve/modify database contents, and execute system ...

CVE-2022-1374

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in DIAEunHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

CVE-2022-1372

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in dlSlog.aspx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

CVE-2022-1372

Delta Electronics DIAEnergie is affected by a blind SQL injection in dlSlog.aspx (CVE-2022-1372) for all versions before 1.8.02.004. The vulnerability allows an attacker to inject arbitrary SQL queries, retrieve/modify database contents, and could lead to remote code execution, as reported in mul...

CVE-2022-1371

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in ReadRegf. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

CVE-2022-1371

CVE-2022-1371 affects Delta Electronics DIAEnergie (all versions before 1.9) with a blind SQL injection in ReadRegf. The NVD entry cites ReadRegf as the vulnerable component and a high-severity impact (C/H/I/A) with network exposure and low attack complexity. Public sources in the connected docum...

CVE-2022-1370

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in ReadREGbyID. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

CVE-2022-1370

Delta Electronics DIAEnergie is affected by a blind SQL injection in the ReadREGbyID function across all versions prior to 1.9 (1.8.02.004 in public advisories). The vulnerability, confirmed in CVE-2022-1370, can allow an attacker to inject arbitrary SQL, retrieve/modify database contents, and po...

CVE-2022-1369

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in ReadRegIND. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

CVE-2022-1369

Delta Electronics DIAEnergie POS-ready industrial energy management software (all versions prior to 1.8.02.004) contains a blind SQL injection vulnerability in ReadRegIND. Exploitation could allow an attacker to inject arbitrary SQL, read/modify database contents, and execute system commands. CVS...

CVE-2022-1367

Delta Electronics DIAEnergie is affected by a blind SQL injection in Handler_TCV.ashx across all versions prior to 1.8.02.004, enabling an attacker to inject arbitrary SQL, read/modify database contents, and execute system commands. The issue is tracked under CVE-2022-1367. Remediation per the ad...

CVE-2022-1367

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in HandlerTCV.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

CVE-2022-1366

Delta Electronics DIAEnergie is affected by CVE-2022-1366. A blind SQL injection exists in HandlerChart.ashx across all versions before 1.8.02.004, allowing an attacker to inject arbitrary SQL, retrieve/modify data, and execute system commands. The issue stems from insufficient input validation i...