Lucene search
K

132 matches found

OSV
OSV
added 2021/01/20 9:15 p.m.4 views

CVE-2021-1235

A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to read sensitive database files on an affected system. The vulnerability is due to insufficient user authorization. An attacker could exploit this vulnerability by accessing the vshell of an...

5.5CVSS6.1AI score0.00306EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/01/20 12:0 a.m.6 views

Cisco SD-WAN vManage Software 安全漏洞

Cisco SD-WAN Solution is a suite of network extension solutions from Cisco, of which vManage is the console. An information disclosure vulnerability exists in the CLI of Cisco SD-WAN vManage versions prior to 19.2.3, which can be exploited by an attacker to read database files from the underlying...

5.5CVSS6AI score0.00306EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2021/01/06 3:1 p.m.7 views

CVE-2020-27285

The default configuration of Crimson 3.1 Build versions prior to 3119.001 allows a user to be able to read and modify the database without authentication...

7.2AI score0.00882EPSS
Exploits0References1
CNVD
CNVD
added 2020/08/08 12:0 a.m.1 views

SQL Injection Vulnerability in Face Recognition Management System of Hanvon Technology Co.

The team is committed to the research and development of face recognition application management system, using face recognition technology as the entry point, combined with Internet technology, cloud computing, big data analysis, cloud storage and other technologies, to develop a series of...

7.9AI score
Exploits0
OSV
OSV
added 2020/07/16 6:15 p.m.4 views

CVE-2020-3468

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. The vulnerability exists because the web-based management interface improperly validates values within SQL...

5.4CVSS6.1AI score0.00993EPSS
Exploits0References1
NVD
NVD
added 2020/03/23 9:15 p.m.21 views

CVE-2020-10874

Motorola FX9500 devices allow remote attackers to read database files...

7.5CVSS7.5AI score0.01359EPSS
Exploits1References1
CNVD
CNVD
added 2018/04/18 12:0 a.m.2 views

Postfix Berkeley DB Read Database Vulnerability

Postfix is a mail transfer agent used in Unix-like operating systems.Berkeley DB is a file database software. A security vulnerability exists in Berkeley DB 2.x and later versions in Postfix. A local attacker can exploit this vulnerability to gain privileges...

7.8CVSS6.8AI score0.00567EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2017/09/07 12:0 a.m.37 views

Cory Support SQL Injection

Exploit : Cory Support pr SQL Injection Vulnerability Author : v3n0m Contact : v3n0matoutlookdotcom Date : September, 06-2017 GMT +7:00 Jakarta, Indonesia Developer : Cory App Software : Cory Support App Link : http://coryapp.com/?product&index Demo : http://coryapp.com/demo/support/ Tested On :...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2017/01/18 12:0 a.m.11 views

B2B Script 4.27 - SQL Injection

B2B Script 4.27 - SQL Injection Vulnerability: B2B Script v4.27 - SQL Injection Date: 18.01.2017 Software link: http://itechscripts.com/b2b-script/ Demo: http://b2b.itechscripts.com Price: 199$ Category: webapps Exploit Author: Dawid Morawski Website: http://www.morawskiweb.pl Contact:...

8.6AI score
Exploits0
CNVD
CNVD
added 2016/09/21 12:0 a.m.3 views

PHPCMS V9 Trojan Bypass Configuration Vulnerability

PHPCMS is a web content management system based on PHP and Mysql architecture. The system includes modules such as news, pictures, downloads, information and products. PHPCMS V9 Trojan horse checking at the existence of bypass configuration vulnerability, allowing attackers to exploit the...

6.6AI score
Exploits0
Cvelist
Cvelist
added 2014/12/15 5:27 p.m.30 views

CVE-2014-9249

The default configuration of Zenoss Core before 5 allows remote attackers to read or modify database information by connecting to unspecified open ports, aka ZEN-15408...

7.4AI score0.01569EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/07/29 6:30 a.m.1 views

MySQL Connector/J vulnerable to SQL injection

Overview MySQL Connector/J from Sun Microsystems contains a SQL injection vulnerability. MySQL Connector/J from Sun Microsystems is a software that provides access to a MySQL database for client applications written in Java. MySQL Connector/J contains a SQL injection vulnerability. Masakazu Ikeda...

6.8CVSS7.5AI score
Exploits0References4
Rows per page
Query Builder