22 matches found
EUVD-2023-43787
Malicious code in bioql PyPI...
CVE-2023-3100
A vulnerability, which was classified as critical, has been found in IBOS 4.5.5. Affected by this issue is the function actionDel of the file ?r=dashboard/approval/del. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used...
PT-2023-30444 · Ibos Oa · Ibos Oa
Name of the Vulnerable Software and Affected Versions: IBOS OA version 4.5.5 Description: A critical issue has been found in the Delete Logs Handler component, specifically affecting the file ?r=diary/default/del. This issue leads to sql injection and can be initiated remotely. The manipulation o...
CVE-2023-3100
A vulnerability, which was classified as critical, has been found in IBOS 4.5.5. Affected by this issue is the function actionDel of the file ?r=dashboard/approval/del. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used...
Sql injection
A vulnerability, which was classified as critical, has been found in IBOS 4.5.5. Affected by this issue is the function actionDel of the file ?r=dashboard/approval/del. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used...
CVE-2023-3100 IBOS del actionDel sql injection
A vulnerability, which was classified as critical, has been found in IBOS 4.5.5. Affected by this issue is the function actionDel of the file ?r=dashboard/approval/del. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used...
CVE-2023-3100 IBOS del actionDel sql injection
A vulnerability, which was classified as critical, has been found in IBOS 4.5.5. Affected by this issue is the function actionDel of the file ?r=dashboard/approval/del. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used...
CVE-2023-3100
CVE-2023-3100 affects IBOS 4.5.5. The vulnerability is an SQL injection in the function actionDel of the file ?r=dashboard/approval/del, triggered by manipulating the id parameter. The exploit has been disclosed publicly. Multiple connected sources confirm the issue and its association with VDB-2...
CVE-2023-2107
A vulnerability, which was classified as critical, was found in IBOS 4.5.5. Affected is an unknown function of the file file/personal/del&op=recycle. The manipulation of the argument fids leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...
Sql injection
A vulnerability, which was classified as critical, was found in IBOS 4.5.5. Affected is an unknown function of the file file/personal/del&op=recycle. The manipulation of the argument fids leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...
CVE-2023-2107 IBOS del&op=recycle sql injection
A vulnerability, which was classified as critical, was found in IBOS 4.5.5. Affected is an unknown function of the file file/personal/del&op=recycle. The manipulation of the argument fids leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...
PT-2023-17862 · Ibos · Ibos
Name of the Vulnerable Software and Affected Versions: IBOS version 4.5.5 Description: A critical issue was found in an unknown function of the file "file/personal/del&op=recycle". The manipulation of the argument fids leads to sql injection. It is possible to launch the attack remotely...
CVE-2023-1744
A vulnerability classified as critical was found in IBOS 4.5.5. This vulnerability affects unknown code of the component htaccess Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The...
Out-of-bounds
A vulnerability classified as critical was found in IBOS 4.5.5. This vulnerability affects unknown code of the component htaccess Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The...
CVE-2023-1744
CVE-2023-1744 affects IBOS 4.5.5, where the htaccess Handler component is implicated. The vulnerability enables unrestricted uploads, with remote initiation and public disclosure of the exploit. Multiple reputable sources (NVD, Red Hat CVE entry, CVE listing, PT Security entry) consistently descr...
CVE-2023-1742
A vulnerability was found in IBOS 4.5.5. It has been rated as critical. Affected by this issue is some unknown functionality of the file /?r=report/api/getlist of the component Report Search. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been...
Sql injection
A vulnerability was found in IBOS 4.5.5. It has been rated as critical. Affected by this issue is some unknown functionality of the file /?r=report/api/getlist of the component Report Search. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been...
CVE-2023-1742
CVE-2023-1742 affects IBOS 4.5.5. The vulnerability targets the file endpoint /?r=report/api/getlist in the Report Search component, where manipulation leads to SQL injection. Exploitation may be remote and multiple sources note the exploit has been disclosed publicly. Impact is described as SQL ...
CVE-2023-1494
A vulnerability classified as critical has been found in IBOS 4.5.5. Affected is an unknown function of the file ApiController.php. The manipulation of the argument emailids leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may ...
CVE-2023-1494
A vulnerability classified as critical has been found in IBOS 4.5.5. Affected is an unknown function of the file ApiController.php. The manipulation of the argument emailids leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may ...