CVE-2022-39180 - How an SQL Injection Weakness in College Management System v1. Exposes Your Application
CVE-2022-39180 is a critical vulnerability discovered in the College Management System v1.. This bug relates to a classic but still dangerous web application weakness: SQL
CVE-2022-43506 In Delta Electronics DIAEnergie v1.9.02.001, SQL Injection can be done via Network.
communication. This can be leveraged to control the functionality of the device and obtain sensitive information. Delta Electronics DIAEnergie version 1.9.02.001 and
CVE-2022-39179 College Management System v1.0 - Authenticated remote code execution
This is how the server serves .php files:
In the student.php file, in order to bypass the filters, there is a SQL Injection that
CVE-2022-36787 Webvendome - Webvendome SQL Injection
The Parameter " FileName" Request : Get Request : /webvendome/showfiles.aspx?jobnumber=nullFile Name=HERE. The SQL Injection in the Parameter " FileName" Request
CVE-2022-43452 In Delta Electronics DIAEnergie versions before v1.9.02.001, SQL Injection can be
injected.
request when DIAEnergie is configured to expose an external database. DIAEnergie versions prior to v1.9.02.001 allows an attacker to inject SQL queries
Episode
00:00:00
00:00:00