A vulnerability was found in DHIS 2 2.32/2.33/2.34/2.35/2.36 and classified as critical. Affected by this issue is an unknown code of the file /api/trackedEntityInstances of the component API Endpoint. Applying a patch is able to eliminate this problem.
DHIS 2 2.32/2.33/2.34/2.35/2.36 API Endpoint trackedEntityInstances sql injection
Description Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the ‘id’ parameter at /pms/admin/prisons/view_prison.php:4 References
Description A vulnerability in the logging component of Cisco Adaptive Security Device Manager (ASDM) could allow an authenticated, local attacker