23 matches found
Sql injection
LibreHealthIO lh-ehr version REL-2.0.0 contains a SQL Injection vulnerability in Show Groups Popup SQL query functions that can result in Ability to perform malicious database queries. This attack appear to be exploitable via User controlled parameters...
Insecure Defaults
Apache Derby is vulnerable to insecure defaults. An attacker can send network packets to a Derby Network Server to maliciously boot a database under their control control. The attack is only possible when the Java Security Manager policy file permits the reading of database locations, which is th...
WSTSHOP open source version controller\Index.php file reload vulnerability
WSTSHOP open source version is a php language based on the development of B2C open source online store system . WSTSHOP open source version controller\Index.php file reload vulnerability . Allow attackers to exploit the vulnerability reload connection to a malicious external database , etc...