Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-46601

A vulnerability has been identified in COMOS (All versions). The affected application lacks proper access controls in making the SQLServer connection. This could allow an attacker to query the database directly to access information that the user should not have access to.

CVE
Open in Source
#sql#vulnerability#pdf

%PDF-1.5 %���� 52 0 obj << /Length 3071 /Filter /FlateDecode >> stream xڵZYs�8~���#U��A��œc*��I�G���y�%�f�&�O��v��%ZQV�[$H4�}|�&�����ד_�NN�3��j�gW�3CI���XK3����SrY�y��/�I��|�]�L%E������M��͜�׃���j�l^�����W�~;ysu� ��P�6[>�|���V��%¦�’���L*A�p]�.O�}B�P�w@�3J��}4SI��-I��Hb%詧 e �iP��ق c)}�+S�0~�⊀�ڵ�`Xz A�~�����t(���l��2��3N�a�K"��`�3Mdj!aA�i��}$f���q�i�-�|��e��fW�(��#�`��FBԖ�O��.�JRT�s�!�b\0�t�s,� ˆ��z����>v�Q�Yp0@�\("���?l]�(�e�u�c���_BTI%O8�b�؂I\� �J����6��s���a�Y*�]��*L�8Oi��7�:̖,e�GF�伏��~�WP���%��!�-�52`�J,I’#�BkF������� 0d�E#�a{� ������b�h�’.>�?�ć�VKN ���vA��.d�$���X�/�|��̙��]%s���Ç{���D�ѽ��g��Z��r��e=�l��dUn�l�&��97����|�m��j��a���h�s 0�2��W�1HQ���L��r��_f۸���*��_׷�w��,��X���u�*�d_�YY�����L)/��Ϊ��}��N����F��2�lZ�ͺ,|-��Q٠���K��v$ ��oʓ��]�d��9��;}�������g n�A�;Y&��e��W����tc�}�s�0�u{g#�Pi[^�6���By�K�<����:�VMT rn�yx�S6*�Ð���>_���"��,�Vu�b�{0�/�9� 7�8Ტ�|H���� JK� -� )�\�6����޾}����� D�-�搕`��Dp�]1Q�(��y$&Ԉ������_]]NH`�q"X���$�$���"1m�h~��=���b�s��9�p aT�c�Ie��_����ջ��O�,f>S�m�xik��s�&��I4��) ���� Kx����n6�� �Pf���8��Y$��g���#�WQǑ�h*�3H���R�.B{wA)��j��r ��ƅ�]���J�����mJ�=R!�Jr�� ��§�X��������8�=�."h�)0

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE