Lucene search
K

9 matches found

CNVD
CNVD
added 2021/12/12 12:0 a.m.14 views

Genesys Intelligent Workload Distribution SQL Injection Vulnerability

Genesys Intelligent Workload Distribution Iwd is an application from Genesys, USA. Genesys intelligent Workload Distribution IWD 9.0.017.07 is vulnerable to SQL injection, which can be exploited to execute arbitrary SQL queries via the "value" parameter to execute arbitrary SQL queries...

7.2CVSS4.6AI score0.01682EPSS
Exploits2References1
NVD
NVD
added 2021/12/08 3:15 p.m.13 views

CVE-2021-40861

A SQL Injection in the custom filter query component in Genesys intelligent Workload Distribution IWD 9.0.017.07 allows an attacker to execute arbitrary SQL queries via the value attribute, with which all data in the database can be extracted and OS command execution is possible depending on the...

7.2CVSS0.01682EPSS
Exploits1References2
OSV
OSV
added 2021/12/08 3:15 p.m.2 views

CVE-2021-40861

A SQL Injection in the custom filter query component in Genesys intelligent Workload Distribution IWD 9.0.017.07 allows an attacker to execute arbitrary SQL queries via the value attribute, with which all data in the database can be extracted and OS command execution is possible depending on the...

7.2CVSS7.4AI score0.01682EPSS
Exploits2References2
NVD
NVD
added 2021/12/08 3:15 p.m.12 views

CVE-2021-40860

A SQL Injection in the custom filter query component in Genesys intelligent Workload Distribution IWD before 9.0.013.11 allows an attacker to execute arbitrary SQL queries via the qlexpression parameter, with which all data in the database can be extracted and OS command execution is possible...

7.2CVSS0.01682EPSS
Exploits1References2
Prion
Prion
added 2021/12/08 3:15 p.m.21 views

Sql injection

A SQL Injection in the custom filter query component in Genesys intelligent Workload Distribution IWD 9.0.017.07 allows an attacker to execute arbitrary SQL queries via the value attribute, with which all data in the database can be extracted and OS command execution is possible depending on the...

6.5CVSS7.6AI score0.01682EPSS
Exploits2References2Affected Software1
Prion
Prion
added 2021/12/08 3:15 p.m.12 views

Sql injection

A SQL Injection in the custom filter query component in Genesys intelligent Workload Distribution IWD before 9.0.013.11 allows an attacker to execute arbitrary SQL queries via the qlexpression parameter, with which all data in the database can be extracted and OS command execution is possible...

6.5CVSS7.6AI score0.01682EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2021/12/08 2:58 p.m.42 views

CVE-2021-40861

CVE-2021-40861 affects Genesys Intelligent Workload Distribution (IWD) 9.0.017.07. A SQL Injection in the custom filter query component allows an attacker to execute arbitrary SQL via the value attribute, potentiallyexfiltrating all data and, depending on permissions/db engine, enabling OS comman...

7.2CVSS7.5AI score0.01682EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/12/08 2:58 p.m.16 views

CVE-2021-40861

A SQL Injection in the custom filter query component in Genesys intelligent Workload Distribution IWD 9.0.017.07 allows an attacker to execute arbitrary SQL queries via the value attribute, with which all data in the database can be extracted and OS command execution is possible depending on the...

7.9AI score0.01682EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/12/08 2:45 p.m.14 views

CVE-2021-40860

A SQL Injection in the custom filter query component in Genesys intelligent Workload Distribution IWD before 9.0.013.11 allows an attacker to execute arbitrary SQL queries via the qlexpression parameter, with which all data in the database can be extracted and OS command execution is possible...

7.9AI score0.01682EPSS
Exploits1References2
Rows per page
Query Builder