CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-51283

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.00099EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 7:44 p.m.•3 views

CVE-2022-48588

A SQL injection vulnerability exists in the “schedule editor decoupled” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database...

8.8CVSS7.7AI score0.00099EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 7:43 p.m.•7 views

CVE-2022-48587

A SQL injection vulnerability exists in the “schedule editor” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database...

8.8CVSS7.7AI score0.00099EPSS

Exploits0References1

CNVD•added 2023/08/12 12:0 a.m.•17 views

ScienceLogic SL1 SQL Injection Vulnerability (CNVD-2023-66421)

ScienceLogic SL1 is an application from ScienceLogic, Inc. Connect your real estate together to automate multidirectional data flow and workflow. A SQL injection vulnerability exists in ScienceLogic SL1 11.1.2 and earlier versions, which stems from a lack of validation of externally entered SQL...

8.8CVSS8.1AI score0.00099EPSS

Exploits0References1

NVD•added 2023/08/09 6:15 p.m.•8 views

CVE-2022-48588

8.8CVSS8.9AI score0.00099EPSS

Exploits0References1

OSV•added 2023/08/09 6:15 p.m.•0 views

CVE-2022-48587

8.8CVSS5.9AI score0.00099EPSS

Exploits0References1

OSV•added 2023/08/09 6:15 p.m.•1 views

CVE-2022-48588

8.8CVSS5.9AI score0.00099EPSS

Exploits0References1

Prion•added 2023/08/09 6:15 p.m.•11 views

Sql injection

A SQL injection vulnerability exists in the “schedule editor” feature of the ScienceLogic SL1 that takes unsanitized user-controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database...

6.5CVSS8.8AI score0.00099EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/08/09 5:47 p.m.•16 views

CVE-2022-48588

8.8CVSS7.8AI score0.00099EPSS

Exploits0References1

Cvelist•added 2023/08/09 5:47 p.m.•8 views

CVE-2022-48588

8.8CVSS9.1AI score0.00099EPSS

Exploits0References1

CVE•added 2023/08/09 5:47 p.m.•32 views

CVE-2022-48588

CVE-2022-48588 is a confirmed SQL injection vulnerability in the “schedule editor decoupled” feature of ScienceLogic SL1 . Multiple connected sources (e.g., Red Hat CVE entry, CNVD-2023-66420, and others) describe that unsanitized, user-controlled input is passed directly into a SQL query, enabli...

8.8CVSS8.8AI score0.00099EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/08/09 5:46 p.m.•10 views

CVE-2022-48587

8.8CVSS7.8AI score0.00099EPSS

Exploits0References1

Cvelist•added 2023/08/09 5:46 p.m.•9 views

CVE-2022-48587

8.8CVSS9.1AI score0.00099EPSS

Exploits0References1

CVE•added 2023/08/09 5:46 p.m.•33 views

CVE-2022-48587

CVE-2022-48587 affects ScienceLogic SL1, where the schedule editor passes unsanitized user input directly into SQL queries, enabling SQL injection. The vulnerability is confirmed across multiple sources/specifications and has a CVSS v3.1 base score of 8.8 (HIGH) with network attack vector, low at...

8.8CVSS8.8AI score0.00099EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/08/09 12:0 a.m.•1 views

PT-2023-15859 · Sciencelogic · Sciencelogic Sl1

Name of the Vulnerable Software and Affected Versions: ScienceLogic SL1 affected versions not specified Description: A SQL injection issue exists in the "schedule editor" feature of the ScienceLogic SL1. This feature takes unsanitized user-controlled input and passes it directly to a SQL query,...

8.8CVSS8.8AI score0.00099EPSS

Exploits0References3