CVE-2022-36690 An SQL injection vulnerability was found in the Stock Management System v1.0's id parameter.
Exploiting this issue may allow remote attackers to execute arbitrary SQL commands in the database or leak database information. The id parameter appears to be
CVE-2022-36689 The Stock Management System v1.0 had a SQL injection vulnerability in the month parameter.
Depending on the parameters used, hackers can manipulate the SQL query to dump data or create new databases. Another potential threat comes from insecure file
CVE-2022-36194 An Attacker could leverage the XSS in the Pollers > Broker Configuration function of Actron Encentreon 22.04.0 to inject malicious code.
By manipulating the name parameter, an attacker can inject malicious code into the application’s code, which can lead to session hijacking and other forms
CVE-2022-36705 The Stock Management System v1.0 had a SQL injection vulnerability.
This can be exploited to redirect users to a malicious location, or execute arbitrary SQL statements if injected into a logged-in user’s account. A
CVE-2022-36706 The Stock Management System v1.0 had a SQL injection vulnerability.
It appears that the application had not enabled the id_ parameter, which allowed attackers to inject script code or SQL commands that were executed when
Episode
00:00:00
00:00:00