Lucene search
K

7 matches found

OSV
OSV
added 2023/05/24 9:15 p.m.5 views

CVE-2022-30025

SQL injection in "/Framewrk/Home.jsp" file POST method in tCredence Analytics iDEAL Wealth and Funds - 1.0 iallows authenticated remote attackers to inject payload via "v" parameter...

6.5CVSS5.9AI score0.0084EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/05/24 9:15 p.m.3 views

CVE-2022-30025

SQL injection in "/Framewrk/Home.jsp" file POST method in tCredence Analytics iDEAL Wealth and Funds - 1.0 iallows authenticated remote attackers to inject payload via "v" parameter...

6.5CVSS6AI score0.0084EPSS
Exploits1References2
NVD
NVD
added 2023/05/24 9:15 p.m.24 views

CVE-2022-30025

SQL injection in "/Framewrk/Home.jsp" file POST method in tCredence Analytics iDEAL Wealth and Funds - 1.0 iallows authenticated remote attackers to inject payload via "v" parameter...

6.5CVSS6.9AI score0.0084EPSS
Exploits1References1
Prion
Prion
added 2023/05/24 9:15 p.m.19 views

Sql injection

SQL injection in "/Framewrk/Home.jsp" file POST method in tCredence Analytics iDEAL Wealth and Funds - 1.0 iallows authenticated remote attackers to inject payload via "v" parameter...

4CVSS6.9AI score0.0084EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2023/05/24 12:0 a.m.6 views

Credence Analytics iDEAL Wealth and Funds SQL注入漏洞

Credence Analytics iDEAL Wealth and Funds is a one-stop solution for funds from Credence Analytics India. A security vulnerability exists in Credence Analytics iDEAL Wealth and Funds version 1.0. An attacker can exploit the vulnerability to inject a payload via the "v" parameter, which can lead t...

6.5CVSS6.8AI score0.0084EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/05/24 12:0 a.m.6 views

PT-2023-12994 · Tcredence · Tcredence Analytics Ideal Wealth/Funds

Name of the Vulnerable Software and Affected Versions: tCredence Analytics iDEAL Wealth and Funds version 1.0 Description: The issue allows authenticated remote attackers to inject a payload via the v parameter in the "/Framewrk/Home.jsp" file using the POST method. Recommendations: For version...

6.5CVSS6.8AI score0.0084EPSS
Exploits1References3
CVE
CVE
added 2023/05/24 12:0 a.m.52 views

CVE-2022-30025

CVE-2022-30025 involves an SQL injection in tCredence Analytics iDEAL Wealth and Funds (version 1.0). The vulnerability exposes the POST parameter named v in the URL path "/Framewrk/Home.jsp" to authenticated remote attackers, enabling payload injection and potential data disclosure (as indicated...

6.5CVSS6.8AI score0.0084EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder