CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

Lenosp 1.0.0-1.2.0 is vulnerable to SQL Injection via the log query module.

Logined -> System Monitor -> System Logs -> Enter username and type -> Query  

Obtain the data packet for the query

Run sqlmap

URI parameter 'userName' is injectable

Affected version: 1.0-1.2.0

Headline

CVE-2023-42178: SQL Injection in log query module · Issue #I7X5QL · 郑州程序员/lenosp - Gitee.com

CVE: Latest News