CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2025/05/22 9:55 p.m.•4 views

CVE-2022-24121

SQL Injection vulnerability discovered in Unified Office Total Connect Now that would allow an attacker to extract sensitive information through a cookie parameter...

7.5CVSS7.6AI score0.01241EPSS

Exploits1References1

ATTACKERKB•added 2022/02/03 4:15 a.m.•0 views

CVE-2022-24121

SQL Injection vulnerability discovered in Unified Office Total Connect Now that would allow an attacker to extract sensitive information through a cookie parameter...

7.5CVSS5.8AI score0.01241EPSS

Exploits1References3

NVD•added 2022/02/03 4:15 a.m.•8 views

CVE-2022-24121

SQL Injection vulnerability discovered in Unified Office Total Connect Now that would allow an attacker to extract sensitive information through a cookie parameter...

7.5CVSS0.01241EPSS

Exploits1References2

Prion•added 2022/02/03 4:15 a.m.•11 views

Sql injection

SQL Injection vulnerability discovered in Unified Office Total Connect Now that would allow an attacker to extract sensitive information through a cookie parameter...

5CVSS7.7AI score0.01241EPSS

Exploits1References2

CVE•added 2022/02/03 3:41 a.m.•53 views

CVE-2022-24121

Unified Office Total Connect Now suffers a cookie-parameter SQL Injection (cookie parameters such as authtoken/PHPSESSID) that can disclose sensitive data. Root cause cited as CWE-565: reliance on cookies without validation/integrity checking. Public sources (CORE advisory) detail vulnerable depl...

7.5CVSS7.7AI score0.01241EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/02/03 3:41 a.m.•15 views

CVE-2022-24121

SQL Injection vulnerability discovered in Unified Office Total Connect Now that would allow an attacker to extract sensitive information through a cookie parameter...

7.9AI score0.01241EPSS

Exploits1References2

CNNVD•added 2022/02/02 12:0 a.m.•3 views

Unified Office Total Connect Now SQL注入漏洞

Unified Office Total Connect Now is a VoIp solution for small and medium-sized businesses from Unified Office USA. A security vulnerability exists in Unified Office Total Connect Now that stems from a database-based application that lacks validation of externally entered SQL statements. An attack...

7.5CVSS7.7AI score0.01241EPSS

Exploits1References3

0day.today•added 2021/06/17 12:0 a.m.•64 views

Unified Office Total Connect Now 1.0 - (data) SQL Injection Vulnerability

Exploit Title: Unified Office Total Connect Now 1.0 – 'data' SQL Injection Shodan Filter: http.title:"TCN User Dashboard" Exploit Author: Ajaikumar Nadar Vendor Homepage: https://unifiedoffice.com/ Software Link: https://unifiedoffice.com/voip-business-solutions/ Version: 1.0 Tested on: CentOS +...

0.3AI score

Exploits0

Packet Storm•added 2021/06/17 12:0 a.m.•305 views

Unified Office Total Connect Now 1.0 SQL Injection

Exploit Title: Unified Office Total Connect Now 1.0 – 'data' SQL Injection Shodan Filter: http.title:"TCN User Dashboard" Date: 06-16-2021 Exploit Author: Ajaikumar Nadar Vendor Homepage: https://unifiedoffice.com/ Software Link: https://unifiedoffice.com/voip-business-solutions/ Version: 1.0...

0.2AI score

Exploits0

Exploit DB•added 2021/06/17 12:0 a.m.•401 views

Unified Office Total Connect Now 1.0 - 'data' SQL Injection

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by