11 matches found
CVE-2021-4298
A vulnerability classified as critical has been found in Hesburgh Libraries of Notre Dame Sipity. This affects the function SearchCriteriaForWorksParameter of the file app/parameters/sipity/parameters/searchcriteriaforworksparameter.rb. The manipulation leads to sql injection. Upgrading to versio...
CVE-2021-4298
A vulnerability classified as critical has been found in Hesburgh Libraries of Notre Dame Sipity. This affects the function SearchCriteriaForWorksParameter of the file app/parameters/sipity/parameters/searchcriteriaforworksparameter.rb. The manipulation leads to sql injection. Upgrading to versio...
Sql injection
A vulnerability classified as critical has been found in Hesburgh Libraries of Notre Dame Sipity. This affects the function SearchCriteriaForWorksParameter of the file app/parameters/sipity/parameters/searchcriteriaforworksparameter.rb. The manipulation leads to sql injection. Upgrading to versio...
CVE-2021-4298 Hesburgh Libraries of Notre Dame Sipity search_criteria_for_works_parameter.rb SearchCriteriaForWorksParameter sql injection
A vulnerability classified as critical has been found in Hesburgh Libraries of Notre Dame Sipity. This affects the function SearchCriteriaForWorksParameter of the file app/parameters/sipity/parameters/searchcriteriaforworksparameter.rb. The manipulation leads to sql injection. Upgrading to versio...
CVE-2021-4298 Hesburgh Libraries of Notre Dame Sipity search_criteria_for_works_parameter.rb SearchCriteriaForWorksParameter sql injection
A vulnerability classified as critical has been found in Hesburgh Libraries of Notre Dame Sipity. This affects the function SearchCriteriaForWorksParameter of the file app/parameters/sipity/parameters/searchcriteriaforworksparameter.rb. The manipulation leads to sql injection. Upgrading to versio...
CVE-2021-4298
CVE-2021-4298 affects Hesburgh Libraries of Notre Dame Sipity. The vulnerability is a SQL injection in the function SearchCriteriaForWorksParameter (file: app/parameters/sipity/parameters/search_criteria_for_works_parameter.rb). Root cause: improper handling of input in the parameter logic leadin...
Sipity SQL注入漏洞
Sipity is an open source plugin-ready and extensible Rails application from Hesburgh Libraries of Notre Dame. It is used to model approval-based workflows. Sipity suffers from a SQL injection vulnerability. An attacker could exploit this vulnerability to perform a sql injection attack...
marche-de-noel-paris-notre-dame.fr Cross Site Scripting vulnerability OBB-1336741
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
notre-dame-de-gravenchon.fr Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-959930 Security Researcher Gh05tPT Helped patch 6892 vulnerabilities Received 10 Coordinated Disclosure badges Received 48 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting notre-dame-de-gravenchon....
notre-dame-des-millieres.fr XSS vulnerability
Open Bug Bounty ID: OBB-621606 Description| Value ---|--- Affected Website:| notre-dame-des-millieres.fr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3...
Notre Dame Data Breach Number at 24K
Notre Dame University, who originally discovered a data breach back in early November 2009, said 24,000 NDU employees were affected. Read the full article. The Observer...