A vulnerability, which was classified as problematic, was found in Graylog up to 4.1.1. This affects an unknown code of the component Session ID Handler. Upgrading to version 4.1.2 eliminates this vulnerability. The upgrade is hosted for download at graylog.org.
Graylog up to 4.1.1 Session ID log file
- Virtual Patching
- August 1, 2021
- 7:05 am
CVE-2024-8887 : CIRCUTOR Q-SMT 1.0.4 IMPROPER VALIDATION OF SPECIFIED QUANTITY IN INPUT
Description CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected by a denial of service (DoS) attack if an
CVE-2024-8762 : CODE-PROJECTS CRUD OPERATION SYSTEM 1.0 /UPDATEDATA.PHP SID SQL INJECTION
Description A vulnerability was found in code-projects Crud Operation System 1.0. It has been classified as critical. This affects an
CVE-2024-34334 : ORDAT FOSS-ONLINE UP TO 2.24.00 FORGOT PASSWORD SQL INJECTION
Description ORDAT FOSS-Online before v2.24.01 was discovered to contain a SQL injection vulnerability via the forgot password function. References https://mind-bytes.de/sql-injection-in-foss-online-cve-2024-34334/