4 matches found
CVE-2022-36161
Orange Station 1.0 was discovered to contain a SQL injection vulnerability via the username parameter...
Sql injection
Orange Station 1.0 was discovered to contain a SQL injection vulnerability via the username parameter...
CVE-2022-36161
CVE-2022-36161 affects Orange Station 1.0, with a SQL injection vulnerability exploitable via the username parameter. Root cause: improper handling of user input in the login/authentication flow leading to SQL injection. Potential impact: unauthorized access and data disclosure if exploited (as d...
CVE-2022-36161
Orange Station 1.0 was discovered to contain a SQL injection vulnerability via the username parameter...