EUVD-2022-28415

Malicious code in bioql PyPI...

GitLab User Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'json' class MetasploitModule 'GitLab User Enumeration', 'Description' = " The GitLab 'internal' API is exposed unauthenticated on GitLab. This allows the userna...

CVE-2022-23335

Metinfo v7.5.0 was discovered to contain a SQL injection vulnerability in languagegeneral.class.php via doModifyParameter...

CVE-2022-22295

Metinfo v7.5.0 was discovered to contain a SQL injection vulnerability in parameteradmin.class.php via the tablepara parameter...

Sql injection

Metinfo v7.5.0 was discovered to contain a SQL injection vulnerability in parameteradmin.class.php via the tablepara parameter...

CVE-2022-23335

Metinfo v7.5.0 was discovered to contain a SQL injection vulnerability in languagegeneral.class.php via doModifyParameter...

CVE-2022-23335

MetInfo v7.5.0 contains a SQL Injection vulnerability in language_general.class.php via doModifyParameter due to improper handling of input in that parameter. Affects MetInfo CMS; root cause is unsafeguarded input in doModifyParameter leading to potential SQL manipulation. Documented impacts indi...

CVE-2022-22295

Metinfo v7.5.0 contains a SQL injection vulnerability in parameter_admin.class.php invoked via the table_para parameter. The issue is caused by improper handling of the table_para input, enabling potential arbitrary SQL execution. The CVE entry provides a CVSS v3.1 base score of 9.8 (critical) an...

CVE-2022-22295

Metinfo v7.5.0 was discovered to contain a SQL injection vulnerability in parameteradmin.class.php via the tablepara parameter...