| Contact us to Fix the issue |
Overview : Pimcore data leakage Flaws through SQL Injection Affected Product(s) : pimcore/pimcore before 6.3.0 Vulnerability Details : CVE ID : CVE-2019-10763 pimcore/pimcore before 6.3.0 is vulnerable to SQL Injection. An attacker with limited privileges (classes permission) can achieve a SQL injection that can lead in data leakage. The vulnerability can be exploited via ‘id’, ‘storeId’, […]
| Contact us to Fix the issue |
Overview : SuiteCRM 7.10.x versions prior to 7.10.21 and 7.11.x versions prior to 7.11.9 allow SQL Injection. Affected Product(s) : SuiteCRM 7.10.x versions prior to 7.10.21 and 7.11.x versions prior to 7.11.9 Vulnerability Details : CVE ID : CVE-2019-18784 The SuiteCRM specified versions are prone to SQLi vulnerability. Exploiting this issue allows attackers to do […]
| Contact us to Fix the issue |
Overview : Zend Framework before 2.2.10 and 2.3.x before 2.3.5 has Potential SQL injection in PostgreSQL Zend\Db adapter. Affected Product(s) : Zend Framework 2.2.10 Zend Framework 2.3.5 Vulnerability Details : CVE ID : CVE-2015-0270 A patch was written that provides the correct PostgreSQL escaping sequence for quotes used for identifiers and values, and tests were […]
| Contact us to Fix the issue |
Overview : Authenticated SQL Injection in interface/forms/eye_mag/js/eye_base.php in OpenEMR through 5.0.2 allows a user to extract arbitrary data from the openemr database via a non-parameterized INSERT INTO statement, as demonstrated by the providerID parameter. Affected Product(s) : OpenEMR 5.0.1 OpenEMR 5.0.1.1 OpenEMR 5.0.1.2 OpenEMR 5.0.1.3 OpenEMR 5.0.1.4 OpenEMR 5.0.1.5 OpenEMR 5.0.1.6 OpenEMR 5.0.1.7 OpenEMR 5.0.2 […]
| Contact us to Fix the issue |
Overview : An issue was discovered in Zoho ManageEngine OpManager before 12.4 build 124089. The OPMDeviceDetailsServlet servlet is prone to SQL injection. Depending on the configuration, this vulnerability could be exploited unauthenticated or authenticated. Affected Product(s) : Zoho ManageEngine OpManager before 12.4 build 124089 Vulnerability Details : CVE ID : CVE-2019-17602 An issue was discovered […]
