Lucene search
K

5 matches found

Snyk
Snyk
added 2024/11/12 7:52 p.m.3 views

SQL Injection

Overview Affected versions of this package are vulnerable to SQL Injection through the adminroleactions method of the papertrailversion.rb file. An attacker can manipulate SQL queries to disclose sensitive information, read and write files, or execute commands. Remediation Upgrade...

9.3CVSS7.8AI score0.0066EPSS
Exploits0References2
OSV
OSV
added 2024/11/12 7:52 p.m.74 views

GHSA-CXWF-QC32-375F Decidim-Awesome has SQL injection in AdminAccountability

Vulnerability type: CWE-89: Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' Vendor: Decidim International Community Environment Has vendor confirmed: Yes Attack type: Remote Impact: Code Execution Escalation of Privileges Information Disclosure Affected component:...

9.3CVSS9.3AI score0.0066EPSS
Exploits0References6
Wired Threat Level
Wired Threat Level
added 2022/03/28 6:3 p.m.17 views

The Future of Digital Cash Is Not on the Blockchain

If you want the privacy of paper money, you need something that leaves no paper trail...

2AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2020/02/04 6:0 p.m.37 views

The Iowa Caucus Tech Meltdown Is a Warning

The Iowa results will come in eventually, thanks to a paper trail. But it underscores just how much can go wrong when you lean on unnecessary, untested tech...

3.5AI score
Exploits0
Schneier on Security
Schneier on Security
added 2020/01/27 12:3 p.m.33 views

Smartphone Election in Washington State

This year: King County voters will be able to use their name and birthdate to log in to a Web portal through the Internet browser on their phones, says Bryan Finney, the CEO of Democracy Live, the Seattle-based voting company providing the technology. Once voters have completed their ballots, the...

1AI score
Exploits0
Rows per page
Query Builder