Lucene search
+L

6 matches found

CNVD
CNVD
added 2022/11/25 12:0 a.m.34 views

Boa SQL Injection Vulnerability

Boa is open source an open source code for embedded applications. A SQL injection vulnerability exists in Boa version 0.94.14rc21. The vulnerability stems from the username parameter not being validated for external input. An attacker can exploit this vulnerability to obtain sensitive database...

9.8CVSS9.7AI score0.00681EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/11/23 9:15 p.m.7 views

CVE-2022-44117

Boa 0.94.14rc21 is vulnerable to SQL Injection via username. NOTE: the is disputed by multiple third parties because Boa does not ship with any support for SQL...

9.8CVSS5.9AI score0.00681EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/11/23 12:0 a.m.7 views

Boa SQL注入漏洞

Boa is open source an open source code for embedded applications. A SQL injection vulnerability exists in Boa version 0.94.14rc21. The vulnerability stems from the username parameter not being validated for external input. An attacker can exploit this vulnerability to obtain sensitive database...

9.8CVSS7.9AI score0.00681EPSS
Exploits0References2
CNVD
CNVD
added 2017/06/27 12:0 a.m.39 views

Boa Webserver Arbitrary File Access Vulnerability

Boa Webserver is a web server for Unix-like computers. A security vulnerability exists in the /cgi-bin/wapopen URI in Boa Webserver version 0.94.14rc21. An attacker can inject the URI by using the FILECAMERA variable '... /...' The vulnerability can be exploited to read files with root privileges...

7.8CVSS6.9AI score0.68243EPSS
Exploits6References1
OpenVAS
OpenVAS
added 2010/01/13 12:0 a.m.104 views

Boa Webserver Terminal Escape Sequence in Logs Command Injection Vulnerability

Boa Webserver is prone to a command-injection vulnerability because it fails to adequately sanitize user-supplied input in logfiles. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

5CVSS9.3AI score0.12078EPSS
Exploits2References2
exploitpack
exploitpack
added 2010/01/11 12:0 a.m.27 views

BOA Web Server 0.94.x - Terminal Escape Sequence in Logs Command Injection

BOA Web Server 0.94.x - Terminal Escape Sequence in Logs Command Injection source: https://www.securityfocus.com/bid/37718/info Boa Webserver is prone to a command-injection vulnerability because it fails to adequately sanitize user-supplied input in logfiles. Attackers can exploit this issue to...

Exploits0
Rows per page
Query Builder