Vulnerabilities

CVE-2021-22856

February 18, 2021

The CGE property management system contains SQL Injection vulnerabilities. Remote attackers can inject SQL commands into the parameters in Cookie and obtain data in the database without privilege.

Summary:

The CGE property management system contains SQL Injection vulnerabilities. Remote attackers can inject SQL commands into the parameters in Cookie and obtain data in the database without privilege.

Reference Links(if available):

https://www.twcert.org.tw/tw/cp-132-4394-76d41-1.html

CVSS Score (if available)

v2: / MEDIUM

v3: /

Links to Exploits(if available)

Advanced Email Attacks Target Manufacturing Sector: Rise of Phishing and BEC

November 23, 2024

Ransomware Groups Driving 40% of Cyber-Attacks in 2024: Key Insights

November 23, 2024

MITRE Reveals Top 25 Most Critical Software Flaws of 2024

November 23, 2024

Microsoft Disrupts Phishing Operations by Seizing 240 Fraudulent Websites

November 23, 2024

Black Friday Spam Emails: 77% Identified as Scams in 2024

November 23, 2024

Summary:

Reference Links(if available):

CVSS Score (if available)

Links to Exploits(if available)

You may have missed

Advanced Email Attacks Target Manufacturing Sector: Rise of Phishing and BEC

Ransomware Groups Driving 40% of Cyber-Attacks in 2024: Key Insights

MITRE Reveals Top 25 Most Critical Software Flaws of 2024

Microsoft Disrupts Phishing Operations by Seizing 240 Fraudulent Websites

Black Friday Spam Emails: 77% Identified as Scams in 2024