| Titel | ibos oa v4.5.5 subject parameter has SQL injection vulnerability |
|---|
| Beschreibung | A serious vulnerability has been found in ibosoa. SQL injection exists in subject parameters of ibosoa v4.5.5 and below. An attacker can obtain all sensitive information of the database through error injection.A serious vulnerability has been found in ibosoa. SQL injection exists in subject parameters of ibosoa v4.5.5 and below. An attacker can obtain all sensitive information of the database through error injection. |
|---|
| Quelle | ⚠️ https://gitee.com/wkstestete/cve/blob/master/sql/ibos%20sql%20injection2.md |
|---|
| Benutzer | wkstestete (UID 43375) |
|---|
| Einreichung | 21.03.2023 06:00 (vor 3 Jahren) |
|---|
| Moderieren | 31.03.2023 12:42 (10 days later) |
|---|
| Status | Duplikat |
|---|
| VulDB Eintrag | 224630 [IBOS 4.5.5 Report Search /?r=report/api/getlist SQL Injection] |
|---|
| Punkte | 0 |
|---|