Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Veracode
Veracodeadded 2023/01/12 9:53 a.m.18 views

SQL Injection

salesforce.sdk.core is vulnerable to SQL injection. The vulnerability exists in QuerySpec.cs because the user provided inputs for are not properly validated which allows an attacker to inject and execute malicious SQL queries in the system...

9.8CVSS4.5AI score0.00353EPSS
Exploits0References5Affected Software1
NVD
NVDadded 2023/01/07 1:15 p.m.7 views

CVE-2016-15012

UNSUPPORTED WHEN ASSIGNED A vulnerability was found in forcedotcom SalesforceMobileSDK-Windows up to 4.x. It has been rated as critical. This issue affects the function ComputeCountSql of the file SalesforceSDK/SmartStore/Store/QuerySpec.cs. The manipulation leads to sql injection. Upgrading to...

9.8CVSS7AI score0.00353EPSS
Exploits0References4
CVE
CVEadded 2023/01/07 12:59 p.m.45 views

CVE-2016-15012

CVE-2016-15012 affects SalesforceMobileSDK-Windows up to version 4.x. The vulnerability lies in the function ComputeCountSql within SalesforceSDK/SmartStore/Store/QuerySpec.cs, allowing SQL injection. Upgrading to version 5.0.0 addresses the issue (patch 83b3e91e0c1e84873a6d3ca3c5887eb5b4f5a3d8)....

9.8CVSS8AI score0.00353EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder