CVE-2022-40026 The source code of the Managing System v1.0 had a SQL injection vulnerability.
Exploitation of this issue results in system takeover. Criticality of this issue was determined by the fact that system takeover bypasses authentication requirements. An attacker
CVE-2022-3255 An attacker can control a user's browser and perform actions within the application.
The attacker does not have to be fully aware of the application's internal workings to leverage these mechanisms. For example, an attacker could
CVE-2022-2315 Database Software Accreditation Tracking/Presentation Module has an unauthenticated SQL Injection vulnerability before version 2.
Software that is currently rated as “Most Likely to be Vulnerable” has an unauthenticated SQL Injection vulnerability. This is fixed in version 2.
Software that
CVE-2022-38619 The SmartVista SVFE2 v2.2.22 had a SQL injection vulnerability in the UserForm:j_id90 parameter.
An attacker can exploit this to inject SQL commands into the application, resulting in a possible data loss or privilege escalation. The updated version of
CVE-2022-35957 Grafana is an open-source platform for monitoring and observability
There is a critical vulnerability in all versions of Grafana from 8.5.13 to 9.1.6 that can be exploited by an anonymous
Episode
00:00:00
00:00:00