sql injection

CVE-2025-25257 (CVSS 9.6): Pre-Auth SQLi in Fortinet FortiWeb Opens Door to RCE, PoC Published CVE-2025-25257 PoC FortiWeb, SQL Injection

CVE-2025-25257 PoC FortiWeb, SQL Injection

CVE-2025-25257 (CVSS 9.6): Pre-Auth SQLi in Fortinet FortiWeb Opens Door to RCE, PoC Published

Ddos July 14, 2025

Critical Flaws Found in Siemens SINEC NMS: Privilege Escalation and Remote Code Execution Risks CVE-2022-43400 & CVE-2024-41798 Siemens SINEC NMS, Critical Vulnerabilities

CVE-2022-43400 & CVE-2024-41798 Siemens SINEC NMS, Critical Vulnerabilities

Critical Flaws Found in Siemens SINEC NMS: Privilege Escalation and Remote Code Execution Risks

Ddos July 9, 2025

Fortinet Fixes Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257, CVSS 9.6) FortiWeb, SQL Injection

FortiWeb, SQL Injection

Fortinet Fixes Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257, CVSS 9.6)

Ddos July 9, 2025

PHP Flaws: CVE-2025-1735 (SQLi/Crash) & CVE-2025-6491 (SOAP DoS) Threaten PHP Apps PHP Vulnerabilities, SQLi DoS CVE-2024-8932 & CVE-2024-8929

PHP Vulnerabilities, SQLi DoS CVE-2024-8932 & CVE-2024-8929

PHP Flaws: CVE-2025-1735 (SQLi/Crash) & CVE-2025-6491 (SOAP DoS) Threaten PHP Apps

Ddos July 4, 2025

Security Flaws in Frappe Framework Expose Self-Hosted ERPNext Users to Takeovers, XSS, and SQL Injection Frappe Framework, Critical Vulnerabilities

Frappe Framework, Critical Vulnerabilities

Security Flaws in Frappe Framework Expose Self-Hosted ERPNext Users to Takeovers, XSS, and SQL Injection

Ddos July 2, 2025

CISA Warns of Critical Flaws in ControlID iDSecure Vehicle Control Software ControlID iDSecure, Access Control Vulnerabilities

ControlID iDSecure, Access Control Vulnerabilities

CISA Warns of Critical Flaws in ControlID iDSecure Vehicle Control Software

Ddos June 26, 2025

Urgent Ubiquiti Alert: Critical Flaws (CVSS 9.9) Allow Privilege Escalation via XSS & SQL Injection Ubiquiti Vulnerabilities, Privilege Escalation

Ubiquiti Vulnerabilities, Privilege Escalation

Urgent Ubiquiti Alert: Critical Flaws (CVSS 9.9) Allow Privilege Escalation via XSS & SQL Injection

Ddos June 18, 2025

QNAP Fixes SQL Injection and Certificate Validation Flaws in Qsync Central and File Station 5 QNAP Vulnerabilities

QNAP Vulnerabilities

QNAP Fixes SQL Injection and Certificate Validation Flaws in Qsync Central and File Station 5

Ddos June 9, 2025

Critical CVSS 9.8 Flaw Hits Popular LlamaIndex Framework Used by Millions LlamaIndex Vulnerability, SQL Injection

LlamaIndex Vulnerability, SQL Injection

Critical CVSS 9.8 Flaw Hits Popular LlamaIndex Framework Used by Millions

Ddos June 6, 2025

Critical Dell Bug (CVSS 9.8) Lets Unauthenticated Attackers Fully Compromise the System CVE-2023-32484 PowerScale OneFS, CVE-2024-53298

CVE-2023-32484 PowerScale OneFS, CVE-2024-53298

Critical Dell Bug (CVSS 9.8) Lets Unauthenticated Attackers Fully Compromise the System

Ddos June 5, 2025

CVE-2025-48912: Apache Superset Flaw Allows Row-Level Security Bypass via SQL Injection Apache Superset, Data Security

Apache Superset, Data Security

CVE-2025-48912: Apache Superset Flaw Allows Row-Level Security Bypass via SQL Injection

Ddos May 31, 2025

Earth Lamia: China-Linked APT Targets Global Industries with Custom Backdoors Lamia

Lamia

Earth Lamia: China-Linked APT Targets Global Industries with Custom Backdoors

Ddos May 28, 2025

CVSS 10.0 Flaws in Siemens OZW Web Servers Enable Unauthenticated RCE and Admin Access CVE-2024-37998 and CVE-2024-39601 CVEs 2025-26389 and 2025-26390 Siemens OZW

CVE-2024-37998 and CVE-2024-39601 CVEs 2025-26389 and 2025-26390 Siemens OZW

CVSS 10.0 Flaws in Siemens OZW Web Servers Enable Unauthenticated RCE and Admin Access

Ddos May 14, 2025

Siemens Fixes 66 SQL Injection Flaws in TeleControl Server Basic Siemens, SQL Injection

Siemens, SQL Injection

Siemens Fixes 66 SQL Injection Flaws in TeleControl Server Basic

Ddos April 18, 2025

Joomla Security Alert: Critical SQL Injection & MFA Bypass Vulnerabilities Uncovered Joomla Vulnerability SQL Injection

Joomla Vulnerability SQL Injection

Joomla Security Alert: Critical SQL Injection & MFA Bypass Vulnerabilities Uncovered

Ddos April 11, 2025

Multiple Vulnerabilities in Zabbix Open the Door to XSS, DoS, and SQL Injection CVE-2024-36465

CVE-2024-36465

Multiple Vulnerabilities in Zabbix Open the Door to XSS, DoS, and SQL Injection

Ddos April 3, 2025

Triple Threat in Frappe Framework: SQL Injection, RCE, and Info Disclosure Fixed in Recent Patches Frappe Framework vulnerability

Frappe Framework vulnerability

Triple Threat in Frappe Framework: SQL Injection, RCE, and Info Disclosure Fixed in Recent Patches

Ddos March 27, 2025

Apache VCL Hit by SQL Injection (CVE-2024-53678) and XSS (CVE-2024-53679) Vulnerabilities CVE-2024-53678 & CVE-2024-53679

CVE-2024-53678 & CVE-2024-53679

Apache VCL Hit by SQL Injection (CVE-2024-53678) and XSS (CVE-2024-53679) Vulnerabilities

Ddos March 26, 2025

Critical Mattermost Flaws (CVE-2025-20051, CVE-2025-24490, CVE-2025-25279) Expose Systems to File Read and SQL Injection Attacks Mattermost Vulnerability, Remote Code Execution CVE-2025-20051, CVE-2025-24490, and CVE-2025-25279

Mattermost Vulnerability, Remote Code Execution CVE-2025-20051, CVE-2025-24490, and CVE-2025-25279

Critical Mattermost Flaws (CVE-2025-20051, CVE-2025-24490, CVE-2025-25279) Expose Systems to File Read and SQL Injection Attacks

Ddos February 24, 2025

Exim Mail Transfer Agent Vulnerable to Remote SQL Injection (CVE-2025-26794), PoC Published

CVE-2025-26794

Exim Mail Transfer Agent Vulnerable to Remote SQL Injection (CVE-2025-26794), PoC Published

Ddos February 23, 2025