Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2021-2561

Malware in sbrugna...

8.5CVSS7.4AI score0.00967EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 9:34 p.m.20 views

CVE-2021-43822

Jackalope Doctrine-DBAL is an implementation of the PHP Content Repository API PHPCR using a relational database to persist data. In affected versions users can provoke SQL injections if they can specify a node name or query. Upgrade to version 1.7.4 to resolve this issue. If that is not possible...

8.5CVSS7.7AI score0.00967EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/16 2:29 p.m.41 views

Security Bulletin: IBM Application Navigator, which is bundled with IBM Cloud Pak for Applications, is vulnerable to a remote attacker exploitation of Apache Log4j (CVE-2021-44228)

Summary IBM Application Navigator, which is bundled with IBM Cloud Pak for Applications, is vulnerable to a remote attacker exploitation of Apache Log4j CVE-2021-44228. The IBM Application Navigator contains a copy of Apache Log4j which is not used by the IBM Application Navigator function. Out o...

10CVSS0.8AI score0.99999EPSS
Exploits351Affected Software1
OSV
OSV
added 2021/12/13 8:15 p.m.18 views

CVE-2021-43822

Jackalope Doctrine-DBAL is an implementation of the PHP Content Repository API PHPCR using a relational database to persist data. In affected versions users can provoke SQL injections if they can specify a node name or query. Upgrade to version 1.7.4 to resolve this issue. If that is not possible...

7.5CVSS8AI score
Exploits0References2
NVD
NVD
added 2021/12/13 8:15 p.m.37 views

CVE-2021-43822

Jackalope Doctrine-DBAL is an implementation of the PHP Content Repository API PHPCR using a relational database to persist data. In affected versions users can provoke SQL injections if they can specify a node name or query. Upgrade to version 1.7.4 to resolve this issue. If that is not possible...

8.5CVSS0.00967EPSS
Exploits0References2
Prion
Prion
added 2021/12/13 8:15 p.m.17 views

Sql injection

Jackalope Doctrine-DBAL is an implementation of the PHP Content Repository API PHPCR using a relational database to persist data. In affected versions users can provoke SQL injections if they can specify a node name or query. Upgrade to version 1.7.4 to resolve this issue. If that is not possible...

6.8CVSS8AI score0.00967EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/12/13 7:50 p.m.82 views

CVE-2021-43822

CVE-2021-43822 concerns SQL injection in the Jackalope Doctrine-DBAL PHPCR implementation. The vulnerability arises because the component that translates the query object model into Doctrine DBAL queries does not properly escape certain user-controlled identifiers (node names and xpaths), allowin...

8.5CVSS8AI score0.00967EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/12/13 7:50 p.m.38 views

CVE-2021-43822 SQL injection in jackalope/jackalope-doctrine-dbal

Jackalope Doctrine-DBAL is an implementation of the PHP Content Repository API PHPCR using a relational database to persist data. In affected versions users can provoke SQL injections if they can specify a node name or query. Upgrade to version 1.7.4 to resolve this issue. If that is not possible...

8.5CVSS9AI score0.00967EPSS
Exploits0References2
Rows per page
Query Builder