EUVD-2022-24687

Malicious code in bioql PyPI...

Sql injection

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in HandlerTCV.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

CVE-2022-1367

Delta Electronics DIAEnergie is affected by a blind SQL injection in Handler_TCV.ashx across all versions prior to 1.8.02.004, enabling an attacker to inject arbitrary SQL, read/modify database contents, and execute system commands. The issue is tracked under CVE-2022-1367. Remediation per the ad...