CVE-2023-50589 | Grupo Embras GEOSIAP ERP 2.2.167.02 Login Page codLogin sql injection

Inserito da Angelo Barbosa | Dic 30, 2023 | CVE

A vulnerability was found in Grupo Embras GEOSIAP ERP 2.2.167.02. It has been rated as critical. Affected by this issue is some unknown functionality of the component Login Page. The manipulation of the argument codLogin leads to sql injection.

This vulnerability is handled as CVE-2023-50589. The attack can only be initiated within the local network. Furthermore, there is an exploit available.

CVE-2023-50589 | Grupo Embras GEOSIAP ERP 2.2.167.02 Login Page codLogin sql injection

Post correlati

CVE-2024-8749 | Synetics Idoit Pro 28 Query isys_api_model_cmdb_objects_by_relation.class.php ID sql injection

CVE-2024-24759 | MindsDB up to 23.12.4.1 server-side request forgery

CVE-2024-32927 | Google Android RadioExt.cpp sendDeviceState_1_6 use after free

CVE-2024-28013 | NEC WG1800HP4 Setting random values