15 matches found
EUVD-2005-1968
Malware in sbrugna...
EUVD-2023-33590
Malicious code in bioql PyPI...
CVE-2023-2064
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Minova Technology eTrace allows SQL Injection. This issue affects eTrace: before 23.05.20...
CVE-2023-2064
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Minova Technology eTrace allows SQL Injection. This issue affects eTrace: before 23.05.20...
CVE-2023-2064
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Minova Technology eTrace allows SQL Injection.This issue affects eTrace: before 23.05.20...
Sql injection
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Minova Technology eTrace allows SQL Injection.This issue affects eTrace: before 23.05.20...
CVE-2023-2064 SQLi in Minova Technology's eTrace
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Minova Technology eTrace allows SQL Injection. This issue affects eTrace: before 23.05.20...
CVE-2023-2064
CVE-2023-2064 targets Minova Technology eTrace via an SQL Injection due to improper neutralization of special elements. Affected: eTrace versions before 23.05.20. Impact per sources indicates high confidentiality, integrity, and availability risk. Remediation: update to 23.05.20 or later (as note...
CVE-2023-2064 SQLi in Minova Technology's eTrace
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Minova Technology eTrace allows SQL Injection. This issue affects eTrace: before 23.05.20...
PT-2023-17507 · Minova Technology · Etrace
Name of the Vulnerable Software and Affected Versions: Minova Technology eTrace versions prior to 23.05.20 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...
Minova Technology eTrace SQL注入漏洞
Minova Technology eTrace is an eSports application from Minova Technology. An SQL injection vulnerability exists in Minova Technology eTrace versions prior to 23.05.20, which stems from improper neutralization of the particular element used...
CVE-2005-1966
The CVE-2005-1966 issue affects the e107 content portal via the eTrace plugin: the eTrace_validaddr function allows remote attackers to run arbitrary commands by injecting shell metacharacters after a valid etrace_host argument. The NASL plug-in also describes a DOTRACE path where etrace_cmd/etra...
CVE-2005-1966
The eTracevalidaddr function in eTrace plugin for e107 portal allows remote attackers to execute arbitrary commands via shell metacharacters after a valid argument to the etracehost parameter...
e107 eTrace Plugin dotrace.php Arbitrary Code Execution
The installation of e107 on the remote host includes the eTrace plugin. This plugin fails to sanitize the 'etracecmd' and 'etracehost' parameters of the 'dotrace.php' script before using them in a system call. An attacker can exploit this flaw to execute arbitrary shell commands subject to the...
CVE-2005-1966
The eTracevalidaddr function in eTrace plugin for e107 portal allows remote attackers to execute arbitrary commands via shell metacharacters after a valid argument to the etracehost parameter...