A vulnerability has been found in openSIS up to 8.0 and classified as critical. This vulnerability affects an unknown code of the file NamesList.php of the component MySQL/MariaDB. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
openSIS up to 8.0 MySQL/MariaDB NamesList.php str sql injection
- Virtual Patching
- September 2, 2021
- 7:05 am
CVE-2024-20381 : CISCO IOS XR JSON-RPC API IMPROPER AUTHORIZATION
Description A vulnerability in the JSON-RPC API feature in ConfD that is used by the web-based management interfaces of Cisco
CVE-2024-44466 : COMFAST CF-XR11 2.7.2 HTTP POST REQUEST /USR/BIN/WEBMGNT SUB_424CB4 IFACE COMMAND INJECTION
Description COMFAST CF-XR11 V2.7.2 has a command injection vulnerability in function sub_424CB4. Attackers can send POST request messages to /usr/bin/webmgnt
CVE-2024-45013 : LINUX KERNEL UP TO 6.10.6 NVME_UNINIT_CTRL USE AFTER FREE
Description In the Linux kernel, the following vulnerability has been resolved: nvme: move stopping keep-alive into nvme_uninit_ctrl() Commit 4733b65d82bd (“nvme: