映射到 CWE-77,CWE-89,CWE-564 的搜索结果 (4697)

CVE-2018-6229(发布:2018-03-15 15:29:01)NMS
CVSS10.0

[原文]A SQL injection vulnerability in an Trend Micro Email Encryption Gateway 5.5 edit policy script could allow an attacker to execute SQL commands to upload and execute arbitrary code that may harm the target system.

CVE-2018-6230(发布:2018-03-15 15:29:01)NMS
CVSS8.3

[原文]A SQL injection vulnerability in an Trend Micro Email Encryption Gateway 5.5 search configuration script could allow an attacker to execute SQL commands to upload and execute arbitrary code that may harm the target system.

CVE-2018-6231(发布:2018-03-15 15:29:01)NMS
CVSS7.5

[原文]A server auth command injection authentication bypass vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.3 and below could allow remote attackers to escalate privileges on vulnerable installations.

CVE-2018-8045(发布:2018-03-14 21:29:03)NMS
CVSS6.5

[原文]In Joomla! 3.5.0 through 3.8.5, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the User Notes list view.

CVE-2018-6329(发布:2018-03-14 15:29:00)NM
CVSS7.5

[原文]It was discovered that the Unitrends Backup (UB) before 10.1.0 libbpext.so authentication could be bypassed with a SQL injection, allowing a remote attacker to place a privilege escalation exploit on the target system and subsequently execute arbitrary commands.

CVE-2018-7474(发布:2018-03-14 10:29:00)NMP
CVSS7.5

[原文]An issue was discovered in Textpattern CMS 4.6.2 and earlier. It is possible to inject SQL code in the variable "qty" on the page index.php.

首页上一页12345678下一页尾页 第3页 / 共783页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站