Security
Headlines
HeadlinesLatestCVEs

Headline

OpenBMCS 2.4 Authenticated SQL Injection

OpenBMCS suffers from an SQL Injection vulnerability. Input passed via the ‘id’ GET parameter is not properly sanitised before being returned to the user or used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

Zero Science Lab
#sql#vulnerability

Zero Science Lab: Latest News

ABB Cylon Aspect 3.08.00 (log(Mix/Yum)Lookup.php) Off-by-One Error in Log Parsing