A vulnerability classified as critical was found in Jumpserver up to 2.6.2. This vulnerability affects an unknown functionality of the component API. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
Jumpserver up to 2.6.2 API access control
- Virtual Patching
- July 24, 2021
- 7:04 am
CVE-2024-45252 : ELSIGHT HALO PRIOR 11.9.4.0 OS COMMAND INJECTION
Description Elsight – CWE-78: Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) References https://www.gov.il/en/Departments/faq/cve_advisories For
CVE-2024-47350 : YITH WOOCOMMERCE AJAX SEARCH PLUGIN UP TO 2.8.0 ON WORDPRESS SQL INJECTION
Description Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in YITH YITH WooCommerce Ajax Search
CVE-2024-9560 : ESAFENET CDG V5 CATELOGS;LOGINDOJOJS DELCATELOGS ID SQL INJECTION
Description A vulnerability was found in ESAFENET CDG V5. It has been rated as critical. Affected by this issue is