4 matches found
CVE-2022-3800
A vulnerability, which was classified as critical, has been found in IBAX go-ibax. Affected by this issue is some unknown functionality of the file /api/v2/open/rowsInfo. The manipulation of the argument tablename leads to sql injection. The attack may be launched remotely. The exploit has been...
CVE-2022-3800 IBAX go-ibax rowsInfo sql injection
A vulnerability, which was classified as critical, has been found in IBAX go-ibax. Affected by this issue is some unknown functionality of the file /api/v2/open/rowsInfo. The manipulation of the argument tablename leads to sql injection. The attack may be launched remotely. The exploit has been...
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
A vulnerability, which was classified as critical, has been found in IBAX go-ibax. Affected by this issue is some unknown functionality of the file /api/v2/open/rowsInfo. The manipulation of the argument tablename leads to sql injection. The attack may be launched remotely. The exploit has been...
CVE-2022-3800
IBAX go-ibax is affected by a SQL injection in /api/v2/open/rowsInfo (parameter: table_name). The issue is exploitable remotely and is supported by multiple sources (e.g., NVD entry for CVE-2022-3800 and nuclei-templates). Impact per the CVE entry is high/critical with potential data disclosure, ...