SQL - CVE CyberSecurity Database News (Page 90)

Jul 25, 2023 API Exploit GraphQL WebSocket SQL directus

CVE-2023-38503 - Unauthorized Data Leak via GraphQL Subscriptions in Directus (Exploit & Details)

Directus is a popular, open-source headless CMS that acts as both an app dashboard and real-time API for SQL databases. In 2023, a major authorization

CVE-2023-37258 - SQL Injection in DataEase (Pre-1.18.9) Allows Attackers to Bypass Blacklists

Jul 25, 2023 Exploit SQL dataease

CVE-2023-37258 - SQL Injection in DataEase (Pre-1.18.9) Allows Attackers to Bypass Blacklists

If you’re using DataEase as your open-source data visualization tool, you need to know about CVE-2023-37258. This nasty SQL injection bug exposed a big

Jul 25, 2023 SQL Java Vocera

CVE-2022-46902 - Path Traversal in Vocera Server's Unzip Operation — Deep Dive and Exploit Walkthrough

--- Disclosure: In 2022, security researchers discovered a critical bug tracked as CVE-2022-46902 in *Vocera Report Server and Voice Server* (versions 5.x through 5.

Jul 25, 2023 WebSocket SQL Vocera

CVE-2022-46898 - Vocera Report Server Path Traversal & SQL Injection via Unsanitized Filename

In 2022, a significant vulnerability (CVE-2022-46898) was discovered in Vocera Report Server and Voice Server versions 5.x through 5.8. This flaw allows an

CVE-2023-3880 - Critical SQL Injection Vulnerability Found in Campcodes Beauty Salon Management System 1.

Jul 25, 2023 Exploit SQL PHP Campcodes Beauty Salon Management System

CVE-2023-3880 - Critical SQL Injection Vulnerability Found in Campcodes Beauty Salon Management System 1.

A critical vulnerability, classified as CVE-2023-3880, has been discovered in the Campcodes Beauty Salon Management System version 1., leaving numerous users exposed to potential attacks.