4 matches found
CVE-2019-25359 SD.NET RIM 4.7.3c - 'idtyp' SQL Injection
SD.NET RIM versions before 4.7.3c contain a SQL injection vulnerability that allows attackers to inject malicious SQL statements through POST parameters 'idtyp' and 'idgremium'. Attackers can exploit this vulnerability by crafting specially formed POST requests to the /vorlagen/ endpoint, enablin...
CVE-2019-25359
SD.NET RIM prior to 4.7.3c is affected by a SQL injection vulnerability that allows an attacker to inject arbitrary SQL via POST parameters idtyp and idgremium to the /vorlagen/ endpoint, enabling unauthorized database manipulation and potential information disclosure. The vulnerability is report...
PT-2026-20534
SD.NET RIM versions before 4.7.3c contain a SQL injection vulnerability that allows attackers to inject malicious SQL statements through POST parameters 'idtyp' and 'idgremium'. Attackers can exploit this vulnerability by crafting specially formed POST requests to the /vorlagen/ endpoint, enablin...
SD.NET RIM 4.7.3c - idtyp SQL Injection
SD.NET RIM 4.7.3c - idtyp SQL Injection Exploit Title: SD.NET RIM 4.7.3c - 'idtyp' SQL Injection Date: 2019-11-05 Exploit Author: Fabian Mosch r-tec IT Security GmbH Vendor Homepage: https://www.sitzungsdienst.net/ Software Link:...