Lucene search
K

34 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:39 a.m.6 views

CVE-1999-0886

The security descriptor for RASMAN allows users to point to an alternate location via the Windows NT Service Control Manager...

9CVSS7AI score0.34254EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-4605

Malware in sbrugna...

7.5CVSS6.4AI score0.02468EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/22 9:26 p.m.6 views

CVE-2021-38393

A Blind SQL injection vulnerability exists in the /DataHandler/HandlerAlarmGroup.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter agid before using it as part of an SQL query....

10CVSS8.5AI score0.01647EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:25 p.m.4 views

CVE-2021-38390

A Blind SQL injection vulnerability exists in the /DataHandler/HandlerEnergyType.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter egyid before using it as part of an SQL query...

10CVSS8.5AI score0.01647EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/05/31 12:0 a.m.24 views

CVE-2024-29824

An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an unauthenticated attacker within the same network to execute arbitrary code. Recent assessments: cdelafuente-r7 at July 23, 2024 8:10am UTC reported: Ivanti Endpoint Manager EPM versions 2022 SU5 a...

9.6CVSS9.1AI score0.93975EPSS
In wildExploits5References3
NVD
NVD
added 2021/08/30 6:15 p.m.13 views

CVE-2021-38390

A Blind SQL injection vulnerability exists in the /DataHandler/HandlerEnergyType.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter egyid before using it as part of an SQL query...

10CVSS0.01647EPSS
Exploits0References1
NVD
NVD
added 2021/08/30 6:15 p.m.12 views

CVE-2021-38391

A Blind SQL injection vulnerability exists in the /DataHandler/AM/AMHandler.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter type before using it as part of an SQL query. A...

10CVSS0.01066EPSS
Exploits0References1
Prion
Prion
added 2021/08/30 6:15 p.m.12 views

Sql injection

A Blind SQL injection vulnerability exists in the /DataHandler/HandlerAlarmGroup.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter agid before using it as part of an SQL query....

10CVSS9.8AI score0.01647EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/08/30 6:15 p.m.19 views

Sql injection

A Blind SQL injection vulnerability exists in the /DataHandler/HandlerCFG.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter keyword before using it as part of an SQL query. A...

10CVSS9.8AI score0.02323EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/08/30 6:15 p.m.20 views

Sql injection

A Blind SQL injection vulnerability exists in the /DataHandler/AM/AMHandler.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter type before using it as part of an SQL query. A...

10CVSS9.8AI score0.01066EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/08/30 6:15 p.m.12 views

Sql injection

A Blind SQL injection vulnerability exists in the /DataHandler/HandlerEnergyType.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter egyid before using it as part of an SQL query...

10CVSS9.8AI score0.01647EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/08/30 5:33 p.m.12 views

CVE-2021-38390

A Blind SQL injection vulnerability exists in the /DataHandler/HandlerEnergyType.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter egyid before using it as part of an SQL query...

9.9AI score0.01647EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/08/30 5:33 p.m.11 views

CVE-2021-32983

A Blind SQL injection vulnerability exists in the /DataHandler/HandlerCFG.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter keyword before using it as part of an SQL query. A...

9.9AI score0.02323EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/08/30 5:31 p.m.15 views

CVE-2021-38393

A Blind SQL injection vulnerability exists in the /DataHandler/HandlerAlarmGroup.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter agid before using it as part of an SQL query....

9.9AI score0.01647EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/08/30 5:30 p.m.11 views

CVE-2021-38391

A Blind SQL injection vulnerability exists in the /DataHandler/AM/AMHandler.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter type before using it as part of an SQL query. A...

10AI score0.01066EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/02/11 12:0 a.m.30 views

Symantec Endpoint Protection Manager secars Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Symantec Endpoint Protection Manager. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw...

3.3CVSS3.4AI score0.00067EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2019/11/14 12:0 a.m.27 views

Symantec Endpoint Protection Manager OpenSSL Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Symantec Endpoint Protection Manager. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

5.3CVSS3AI score0.00055EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

BindView HackerShield 1.0/1.1 HackerShield AgentAdmin Password Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/628/info The BindView HackerShield product originally Netect's HackerShield creates an NT service account called NetectAgentAdmin$. This account is a member of the local administrators group on an NT host. The service...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.10 views

IBM Remote Control Software 1.0 Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/284/info The IBM Remote Control Software package requires a client module to be loaded on NT hosts to be remotey controlled. This client module is loaded as an NT service and must run under either the local system account...

7.1AI score
Exploits0
myhack58
myhack58
added 2011/03/31 12:0 a.m.15 views

Joe guest(joekoe) CMS 4.0 upload and SQL injection vulnerabilities-vulnerability warning-the black bar safety net

Joekoe CMS 4.0 brings you a perfect design, in the member interaction and Security aspects of a unique innovative system for the Windows NT Service environment of a Web site or a business platform of the best solutions. Its well-designed architecture with functional mechanisms, from the individua...

Exploits0
Rows per page
Query Builder