Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-27268

Malware in sbrugna...

7.2CVSS6.7AI score0.01727EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:45 p.m.9 views

CVE-2020-6114

An exploitable SQL injection vulnerability exists in the Admin Reports functionality of Glacies IceHRM v26.6.0.OS Commit bb274de1751ffb9d09482fd2538f9950a94c510a . A specially crafted HTTP request can cause SQL injection. An attacker can make an authenticated HTTP request to trigger this...

7.2CVSS7.9AI score0.01727EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/06 12:0 a.m.3 views

Glacies IceHRM 安全漏洞

Glacies IceHRM is a human resource management system from the Glacies team in Germany. The system includes features such as expense management, recruitment management, payroll management and vacation management. A security vulnerability exists in Glacies IceHRM v32.4.0.OS, which stems from improp...

6.1CVSS5.9AI score0.00368EPSS
Exploits0References2
CNVD
CNVD
added 2020/07/13 12:0 a.m.2 views

Glacies IceHRM SQL Injection Vulnerability

Glacies IceHRM is a human resource management system from the Glacies team in Germany. The system includes features such as expense management, recruitment management, payroll management and leave management. A SQL injection vulnerability exists in the Admin Reports feature in Glacies IceHRM...

7.2CVSS8.2AI score0.01727EPSS
Exploits1References1
NVD
NVD
added 2020/07/10 6:15 p.m.16 views

CVE-2020-6114

An exploitable SQL injection vulnerability exists in the Admin Reports functionality of Glacies IceHRM v26.6.0.OS Commit bb274de1751ffb9d09482fd2538f9950a94c510a . A specially crafted HTTP request can cause SQL injection. An attacker can make an authenticated HTTP request to trigger this...

7.2CVSS0.01727EPSS
Exploits1References1
OSV
OSV
added 2020/07/10 6:15 p.m.10 views

CVE-2020-6114

An exploitable SQL injection vulnerability exists in the Admin Reports functionality of Glacies IceHRM v26.6.0.OS Commit bb274de1751ffb9d09482fd2538f9950a94c510a . A specially crafted HTTP request can cause SQL injection. An attacker can make an authenticated HTTP request to trigger this...

7.2CVSS7.9AI score
Exploits0References1
Prion
Prion
added 2020/07/10 6:15 p.m.18 views

Sql injection

An exploitable SQL injection vulnerability exists in the Admin Reports functionality of Glacies IceHRM v26.6.0.OS Commit bb274de1751ffb9d09482fd2538f9950a94c510a . A specially crafted HTTP request can cause SQL injection. An attacker can make an authenticated HTTP request to trigger this...

6.5CVSS7.2AI score0.01727EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/07/10 5:51 p.m.62 views

CVE-2020-6114

The CVE-2020-6114 issue affects Glacies IceHRM v26.6.0.OS Admin Reports. TALOS details show an exploitable SQL injection caused by improper handling of the ob parameter used to build the ORDER BY clause in data retrieval paths (core/data.php → BaseService->getData, then Find). The vulnerabilit...

7.2CVSS7.3AI score0.01727EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/07/10 5:51 p.m.26 views

CVE-2020-6114

An exploitable SQL injection vulnerability exists in the Admin Reports functionality of Glacies IceHRM v26.6.0.OS Commit bb274de1751ffb9d09482fd2538f9950a94c510a . A specially crafted HTTP request can cause SQL injection. An attacker can make an authenticated HTTP request to trigger this...

6.6CVSS7.3AI score0.01727EPSS
Exploits1References1
Talos Blog
Talos Blog
added 2020/07/10 8:52 a.m.21 views

Vulnerability Spotlight: SQL injection vulnerability in Glacies IceHRM

Yuri Kramarz of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. Cisco Talos researchers recently discovered that the Glacies' IceHRM software contains a vulnerability that could allow an adversary to inject SQL. IceHRM is a human resource management tool, allowing users to create...

0.8AI score
Exploits0
Talos
Talos
added 2020/07/10 12:0 a.m.42 views

Glacies IceHRM Admin Reports SQL injection Vulnerability

Summary An exploitable SQL injection vulnerability exists in the Admin Reports functionality of Glacies IceHRM v26.6.0.OS Commit bb274de1751ffb9d09482fd2538f9950a94c510a . A specially crafted HTTP request can cause SQL injection. An attacker can make an authenticated HTTP request to trigger this...

7.2CVSS7.2AI score0.01727EPSS
Exploits1
Rows per page
Query Builder