9 matches found
EUVD-2022-44585
Malicious code in bioql PyPI...
CVE-2022-41390
OcoMon v4.0 was discovered to contain a SQL injection vulnerability via the cod parameter at download.php...
CVE-2022-41391
OcoMon v4.0 was discovered to contain a SQL injection vulnerability via the cod parameter at showImg.php...
Sql injection
OcoMon v4.0 was discovered to contain a SQL injection vulnerability via the cod parameter at download.php...
Sql injection
OcoMon v4.0 was discovered to contain a SQL injection vulnerability via the cod parameter at showImg.php...
CVE-2022-41391
CVE-2022-41391 affects OcoMon v4.0, with a SQL injection in the showImg.php endpoint via the cod parameter. The root cause is unsafely handling user input in the SQL query, allowing attackers to craft requests that may compromise confidentiality, integrity, and availability (CVSS v3.1 base score ...
CVE-2022-41390
OcoMon v4.0 was discovered to contain a SQL injection vulnerability via the cod parameter at download.php...
CVE-2022-41390
Summary (CVE-2022-41390): OcoMon v4.0 is affected by a SQL injection vulnerability in the download.php endpoint, triggered via the cod parameter. The issue is described as affecting the ability to inject SQL through this parameter, with the CVSS v3.1 metrics indicating a critical impact (AV:N/AC:...
CVE-2022-41391
OcoMon v4.0 was discovered to contain a SQL injection vulnerability via the cod parameter at showImg.php...