CVE-2022-30025

SQL injection in "/Framewrk/Home.jsp" file POST method in tCredence Analytics iDEAL Wealth and Funds - 1.0 iallows authenticated remote attackers to inject payload via "v" parameter...

CVE-2022-30025

SQL injection in "/Framewrk/Home.jsp" file POST method in tCredence Analytics iDEAL Wealth and Funds - 1.0 iallows authenticated remote attackers to inject payload via "v" parameter...

Sql injection

SQL injection in "/Framewrk/Home.jsp" file POST method in tCredence Analytics iDEAL Wealth and Funds - 1.0 iallows authenticated remote attackers to inject payload via "v" parameter...

PT-2023-12994 · Tcredence · Tcredence Analytics Ideal Wealth/Funds

Name of the Vulnerable Software and Affected Versions: tCredence Analytics iDEAL Wealth and Funds version 1.0 Description: The issue allows authenticated remote attackers to inject a payload via the v parameter in the "/Framewrk/Home.jsp" file using the POST method. Recommendations: For version...

CVE-2022-30025

CVE-2022-30025 involves an SQL injection in tCredence Analytics iDEAL Wealth and Funds (version 1.0). The vulnerability exposes the POST parameter named v in the URL path "/Framewrk/Home.jsp" to authenticated remote attackers, enabling payload injection and potential data disclosure (as indicated...