Latest Security News about sql injection

Contact US For API Security>

Octeth Oempro 4.7 allows SQL injection

Overview : Octeth Oempro 4.7 found a SQL injection. The parameter “CampaignID” in “Campaign.Get” is vulnerable to SQL Injection attacks. Affected Product(s) : Oempro – 4.7 Vulnerability Details : CVE ID : CVE-2019-19740 The parameter “CampaignID” in “Campaign.Get” is vulnerable to SQL Injection attacks. Solution : Upgrade to latest version of Octeth Oempro

Contact US For API Security>

Accentis Content Resource Management System suffer from a remote SQL injection vulnerability.

Overview : Accentis Content Resource Management System versions released prior to the October 2015 patch suffer from a remote SQL injection vulnerability. Affected Product(s) : Accentis Content Resource Management System Vulnerability Details : CVE ID : CVE-2015-3424 SQL injection vulnerability in Accentis Content Resource Management System before the October 2015 patch allows remote attackers to […]

Contact US For API Security>

SQL Injection attack in pimcore before 6.3.0

Overview : Pimcore data leakage Flaws through SQL Injection Affected Product(s) : pimcore/pimcore before 6.3.0 Vulnerability Details : CVE ID : CVE-2019-10763 pimcore/pimcore before 6.3.0 is vulnerable to SQL Injection. An attacker with limited privileges (classes permission) can achieve a SQL injection that can lead in data leakage. The vulnerability can be exploited via ‘id’, ‘storeId’, […]

Contact US For API Security>

SQL Injection flaw in SuiteCRM

Overview : SuiteCRM 7.10.x versions prior to 7.10.21 and 7.11.x versions prior to 7.11.9 allow SQL Injection. Affected Product(s) : SuiteCRM 7.10.x versions prior to 7.10.21 and 7.11.x versions prior to 7.11.9 Vulnerability Details : CVE ID : CVE-2019-18784 The SuiteCRM specified versions are prone to SQLi vulnerability. Exploiting this issue allows attackers to do […]