| Overview : |
| Octeth Oempro 4.7 found a SQL injection. The parameter “CampaignID” in “Campaign.Get” is vulnerable to SQL Injection attacks. |
| Affected Product(s) : |
|
| Vulnerability Details : |
||||
Solution : Upgrade to latest version of Octeth Oempro |
Octeth Oempro 4.7 allows SQL injection
- Prophaze WAF
- December 12, 2019
- 3:47 pm
- Prophaze WAF
- December 12, 2019
- 3:47 pm
Common Vulnerabilityies and Exposures
Contact us to get started
CVE-2022-41157 : KYUNGRINARA ERP SOLUTION SERP SERVER HARD-CODED CREDENTIALS
Description A specific file on the sERP server if Kyungrinara(ERP solution) has a fixed password with the SYSTEM authority. This
CVE-2022-45884 : LINUX KERNEL UP TO 6.0.9 DVBDEV.C DVB_REGISTER_DEVICE USE AFTER FREE
Description An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free, related to dvb_register_device dynamically allocating
CVE-2022-41875 : OPTICA UP TO 0.10.1 JSON OJ.SAFE_LOAD DESERIALIZATION
Description A remote code execution (RCE) vulnerability in Optica allows unauthenticated attackers to execute arbitrary code via specially crafted JSON