CVE-2022-42074 The v1.0 of GED Diagnostic Lab Management System is vulnerable to SQL Injection.
A hacker can inject a SQL query to change the content of the database and steal critical information or even take over the system. A
CVE-2022-41514 The Open Source SACCO Management System v1.0 had a SQL injection vulnerability where users were able to delete loans.
If a user with lower privilege accesses this URL, the id parameter can be manipulated by an attacker to execute arbitrary SQL commands. SACCO Open
CVE-2022-41515 The Open Source SACCO Management System v1.0 had a SQL injection vulnerability with the id parameter.
A hacker can exploit this vulnerability to execute arbitrary SQL commands with the privileges of the user that installed the application. In a highly critical
CVE-2022-41513 An SQL injection was found in the online diagnostic lab management system v1.0 via the id parameter.
An attacker can inject SQL commands that will run against the database to leak sensitive information. Remote attackers can exploit this vulnerability to execute code
CVE-2022-34308 IBM CICS TX 11.1 could allow a local user to cause a denial of service due to improper load handling
This issue is due to the way that certain data types, such as certain strings, are handled when they are loaded into CICS vectors. An
Episode
00:00:00
00:00:00