CVE-2022-41513 An SQL injection was found in the online diagnostic lab management system v1.0 via the id parameter.
An attacker can inject SQL commands that will run against the database to leak sensitive information. Remote attackers can exploit this vulnerability to execute code
CVE-2022-34308 IBM CICS TX 11.1 could allow a local user to cause a denial of service due to improper load handling
This issue is due to the way that certain data types, such as certain strings, are handled when they are loaded into CICS vectors. An
CVE-2022-40834 B.C
An attacker can inject arbitrary SQL code into the database by setting the value of the parameter to ' or_not_like() function in system\
CVE-2022-40835 B.C
A user with minimum privileges can inject arbitrary SQL queries and execute them with the privileges of the application user. A user with minimum privileges
CVE-2022-40833 B.C
An attacker can inject malicious SQL code into system\database\DB_query_builder.php to cause denial of service.
CVE-2018-6109: SQL injection in system\database\
Episode
00:00:00
00:00:00