6026 matches found
CVE-2022-36674
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /schedules/viewschedule.php...
CVE-2022-36675
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /schedules/manageschedule.php...
CVE-2022-36676
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /categories/viewcategory.php...
CVE-2022-36675
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /schedules/manageschedule.php...
Sql injection
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /schedules/viewschedule.php...
Sql injection
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /categories/viewcategory.php...
Sql injection
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /schedules/manageschedule.php...
CVE-2022-36676
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /categories/viewcategory.php...
CVE-2022-36676
CVE-2022-36676 affects Simple Task Scheduling System v1.0. The vulnerability is a SQL injection in the id parameter of the /categories/view_category.php endpoint. The issue is documented across multiple sources (NVD, Red Hat, PRION/PT-Security, CNNVD, CVE list) with no explicit exploit details pr...
CVE-2022-36675
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /schedules/manageschedule.php...
CVE-2022-36675
CVE-2022-36675 applies to the open-source/legacy software “Simple Task Scheduling System v1.0.” The vulnerability is a SQL injection in the id parameter of the endpoint /schedules/manage_schedule.php. The available sources consistently state a SQLi flaw but do not provide concrete exploit details...
CVE-2022-36674
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /schedules/viewschedule.php...
CVE-2022-36674
The CVE-2022-36674 entry describes a SQL injection in Simple Task Scheduling System v1.0, exploitable via the id parameter at /schedules/view_schedule.php. Affected component is the web-facing PHP endpoint; root cause is unsafely interpolating user-supplied id into a SQL query (SQLi). NVD shows a...
PT-2022-23543 · Unknown · Simple Task Scheduling System
Name of the Vulnerable Software and Affected Versions: Simple Task Scheduling System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/schedules/view schedule.php" API endpoint. Recommendations: For...
PT-2022-23545 · Unknown · Simple Task Scheduling System
Name of the Vulnerable Software and Affected Versions: Simple Task Scheduling System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/categories/view category.php" API endpoint. Recommendations: For...
Simple Task Scheduling System SQL注入漏洞
Simple Task Scheduling System is a simple task scheduling system by Carlo Montero Personal Developer. A security vulnerability exists in Simple Task Scheduling System version v1.0, which contains an SQL injection vulnerability via the id parameter in /categories/viewcategory.php...
Simple Task Scheduling System SQL注入漏洞
Simple Task Scheduling System is a simple task scheduling system by Carlo Montero Personal Developer. A security vulnerability exists in the v1.0 version of Simple Task Scheduling System, which contains a SQL injection vulnerability via the id parameter in /schedules/manageschedule.php...
PT-2022-23544 · Unknown · Simple Task Scheduling System
Name of the Vulnerable Software and Affected Versions: Simple Task Scheduling System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/schedules/manage schedule.php" API endpoint. Recommendations: For...
ModernLoader delivers multiple stealers, cryptominers and RATs
By Vanja Svajcer Cisco Talos recently observed three separate, but related, campaigns between March and June 2022 delivering a variety of threats, including the ModernLoader bot, RedLine information-stealer and cryptocurrency-mining malware to victims. The actors use PowerShell, .NET assemblies,...
PT-2022-28198 · Unknown · Moment-Timezone
Name of the Vulnerable Software and Affected Versions: moment-timezone versions 0.1.0 through 0.5.34 Description: The issue concerns command injection vulnerabilities in moment-timezone. An attacker can execute arbitrary commands on the system running the grunt task with the same privileges as th...