Description
Database Software Accreditation Tracking/Presentation Module product before version 2 has an unauthenticated SQL Injection vulnerability. This is fixed in version 2.
References
https://www.usom.gov.tr/bildirim/tr-22-0634
CVE-2022-2315 : DATABASE SOFTWARE PRIOR 2 ACCREDITATION TRACKING/PRESENTATION SQL INJECTION
- Prophy Insights
- September 22, 2022
- 3:25 pm
Contact us to get started
CVE-2023-6514 : HUAWEI AJMD-370S 103.1.0.110(SP12C00E2R1P2) BLUETOOTH MODULE LOGIC ERROR
Description The Bluetooth module of some Huawei Smart Screen products has an identity authentication bypass vulnerability. Successful exploitation of this
CVE-2023-22523 : ATLASSIAN ASSETS DISCOVERY CLOUD ASSETS DISCOVERY AGENT REMOTE CODE EXECUTION
Description This vulnerability, if exploited, allows an attacker to perform privileged RCE (Remote Code Execution) on machines with the Assets
CVE-2023-49070 : APACHE OFBIZ UP TO 18.12.9 CODE INJECTION
Description Pre-auth RCE in Apache Ofbiz 18.12.09. It’s due to XML-RPC no longer maintained still present. This issue affects Apache