Lucene search
K

5 matches found

OSV
OSV
added 2024/03/21 2:15 p.m.5 views

CVE-2024-29870

SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/index/getdepartments/format/html, 'businessid' parameter./sentrifugo/index.php/index/getdepartments/format/html, 'businessid' parameter. The exploitation of this vulnerability could allow a remote user to send a speciall...

9.8CVSS5.9AI score0.00856EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/21 12:0 a.m.4 views

Sentrifugo 跨站脚本漏洞

Sentrifugo is a human resource management system. The system includes functions for human resources management, performance appraisal, recruitment management and asset management. A cross-site scripting vulnerability exists in Sentrifugo version 3.2, which stems from the lack of effective filteri...

7.1CVSS6.3AI score0.00489EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/03/21 12:0 a.m.8 views

PT-2024-23095 · Unknown · Sentrifugo

Name of the Vulnerable Software and Affected Versions: Sentrifugo version 3.2 Description: The issue is related to a SQL injection vulnerability. It could allow a remote user to send a specially crafted query to the server and extract all the data from it. The vulnerability is exploited through t...

9.8CVSS7.5AI score0.00856EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/03/21 12:0 a.m.18 views

PT-2024-23094 · Unknown · Sentrifugo

Name of the Vulnerable Software and Affected Versions: Sentrifugo version 3.2 Description: The issue is related to a SQL injection vulnerability. It could allow a remote user to send a specially crafted query to the server and extract all the data from it. The vulnerability is exploited through t...

9.8CVSS7.5AI score0.00856EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/03/21 12:0 a.m.6 views

Sentrifugo SQL注入漏洞

Sentrifugo is a human resource management system. The system includes functions for human resources management, performance appraisal, recruitment management and asset management. A SQL injection vulnerability exists in Sentrifugo version 3.2, which originates from the lack of validation of...

9.8CVSS8.1AI score0.00856EPSS
Exploits0References2
Rows per page
Query Builder