4 matches found
CVE-2022-31487
CVE-2022-31487 affects Inout Blockchain AltExchanger 1.2.1 and Inout Blockchain FiatExchanger 2.2.1. The root cause is a SQL injection in Chart/TradingView/chart_content/master.php symbol parameter due to missing input filtering/escaping. Documented impact includes potential data exposure (confid...
CVE-2022-31489
CVE-2022-31489 affects Inout Blockchain AltExchanger version 1.2.1. The vulnerability is an SQL injection in the inoutio_language cookie via index.php/home/about, caused by insufficient filtering/escaping of cookie data. NVD CVSS data indicates a Network attack vector with high impact on confiden...
CVE-2022-31488
CVE-2022-31488 affects Inout Blockchain AltExchanger 1.2.1, with a SQL injection on the index.php/coins/update_marketboxslider marketcurrency page. Root cause stated: lack of input filtering/escaping on that endpoint. Affected component: the marketcurrency parameter handling in index.php/coins/up...
CVE-2022-34988
CVE-2022-34988 affects Inout Blockchain AltExchanger v1.2.1 and is an XSS vulnerability exposed through the /admin/js component. The NVD entry lists CVSSv3.1: 5.4 (Medium) with network attack vector, low attack complexity, privileges required: Low, and user interaction required; impact is limited...