映射到 CWE-77,CWE-89 的搜索结果 (4735)

CVE-2018-7501(发布:2018-05-15 18:29:00)NMS
CVSS5.0

[原文]In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAccess/NMS 2.0.3 and prior, several SQL injection vulnerabilities have been identified, which may allow an attacker to disclose sensitive information from the host.

CVE-2018-1280(发布:2018-05-11 16:29:00)NMS
CVSS5.0

[原文]Pivotal Greenplum Command Center versions 2.x prior to 2.5.1 contains a blind SQL injection vulnerability. An unauthenticated user can perform a SQL injection in the command center which results in disclosure of database contents.

CVE-2018-8914(发布:2018-05-10 09:29:00)NM
CVSS7.5

[原文]SQL injection vulnerability in UPnP DMA in Synology Media Server before 1.7.6-2842 and before 1.4-2654 allows remote attackers to execute arbitrary SQL commands via the ObjectID parameter.

CVE-2018-8824(发布:2018-05-09 23:29:00)NM
CVSS7.5

[原文]modules/bamegamenu/ajax_phpcode.php in the Responsive Mega Menu (Horizontal+Vertical+Dropdown) Pro module 1.0.32 for PrestaShop 1.5.5.0 through 1.7.2.5 allows remote attackers to execute a SQL Injection through function calls in the code parameter.

CVE-2018-8866(发布:2018-05-09 15:29:03)NMS
CVSS8.3

[原文]In Vecna VGo Robot versions prior to 3.0.3.52164, an attacker on an adjacent network could perform command injection.

CVE-2018-5234(发布:2018-04-30 14:29:00)NMPS
CVSS8.3

[原文]The Norton Core router prior to v237 may be susceptible to a command injection exploit. This is a type of attack in which the goal is execution of arbitrary commands on the host system via vulnerable software.

12345678下一页尾页 第1页 / 共790页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站