CVE-2024-9982

AIM LINE Marketing Platform from Esi Technology does not properly validate a specific query parameter. When the LINE Campaign Module is enabled, unauthenticated remote attackers can inject arbitrary FetchXml commands to read, modify, and delete database content...

Severe Security Flaws Patched in Microsoft Dynamics 365 and Power Apps Web API

Details have emerged about three now-patched security vulnerabilities in Dynamics 365 and Power Apps Web API that could result in data exposure. The flaws, discovered by Melbourne-based cybersecurity company Stratus Security, have been addressed as of May 2024. Two of the three shortcomings resid...

CVE-2024-9982

AIM LINE Marketing Platform from Esi Technology does not properly validate a specific query parameter. When the LINE Campaign Module is enabled, unauthenticated remote attackers can inject arbitrary FetchXml commands to read, modify, and delete database content...

CVE-2024-9982

CVE-2024-9982 affects Esi Technology’s AIM LINE Marketing Platform. The vulnerability arises from improper validation of a specific query parameter, enabling an unauthenticated attacker to inject arbitrary FetchXml commands when the LINE Campaign Module is enabled, with read/modify/delete access ...

CVE-2024-9982 ESi Technology AIM LINE Marketing Platform - SQL Injection

AIM LINE Marketing Platform from Esi Technology does not properly validate a specific query parameter. When the LINE Campaign Module is enabled, unauthenticated remote attackers can inject arbitrary FetchXml commands to read, modify, and delete database content...

ESi AIM LINE Marketing Platform SQL注入漏洞

ESi AIM LINE Marketing Platform is a marketing platform from ESi, Inc. A SQL injection vulnerability exists in ESi AIM LINE Marketing Platform versions 3.3.0 through 5.8.4, which stems from failure to properly validate a specific query parameter, and when the LINE Marketing module is enabled, an...