3 matches found
CVE-2026-3021 Non-relational SQL injection vulnerability (NoSQLi) in the Wakyma application web
Non-relational SQL injection vulnerability NoSQLi in the Wakyma web application, specifically in the endpoint 'vets.wakyma.com/centro/equipo/empleado'. This vulnerability could allow an authenticated user to alter a GET request to the affected endpoint for the purpose of injecting special NoSQL...
PT-2024-33237 · Taskmatic · Taskmatic
Name of the Vulnerable Software and Affected Versions: taskmatic version 1.0 Description: The issue allows a remote attacker to execute arbitrary code via the admin id parameter of the "/update-employee.php" API endpoint. Recommendations: For taskmatic version 1.0, consider disabling the...
PT-2024-39036 · Unknown · Job Portal
Name of the Vulnerable Software and Affected Versions: JobPortal affected versions not specified Description: The issue is related to an SQL injection vulnerability. An attacker could send a specially designed query through the id parameter in the "/jobportal/admin/employee/index.php" endpoint an...