Lucene search
K

5 matches found

CNVD
CNVD
added 2023/08/12 12:0 a.m.12 views

ScienceLogic SL1 SQL Injection Vulnerability (CNVD-2023-66419)

ScienceLogic SL1 is an application from ScienceLogic, Inc. Connect your real estate together to automate multidirectional data flow and workflow. A SQL injection vulnerability exists in ScienceLogic SL1 11.1.2 and earlier versions, which stems from a lack of validation of externally entered SQL...

8.8CVSS8.1AI score0.00608EPSS
Exploits0References1
Prion
Prion
added 2023/08/09 6:15 p.m.18 views

Sql injection

A SQL injection vulnerability exists in the “reporting job editor” feature of the ScienceLogic SL1 that takes unsanitized user-controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database...

6.5CVSS8.8AI score0.00608EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/08/09 5:54 p.m.54 views

CVE-2022-48589

CVE-2022-48589 is a SQL injection vulnerability in the ScienceLogic SL1 platform, specifically in the “reporting job editor” that unsafely passes user-controlled input to SQL queries. Affected component is SL1’s reporting job editor; root cause is unsanitized input reaching the database. The NVD ...

8.8CVSS8.8AI score0.00608EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/09 5:54 p.m.11 views

CVE-2022-48589

A SQL injection vulnerability exists in the “reporting job editor” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database...

8.8CVSS7.8AI score0.00608EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/08/09 5:54 p.m.29 views

CVE-2022-48589

A SQL injection vulnerability exists in the “reporting job editor” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database...

8.8CVSS9.1AI score0.00608EPSS
Exploits0References1
Rows per page
Query Builder