Show filters
26 Total Results
Displaying 11-20 of 26
Sort by:
Attacker Value
Unknown
CVE-2021-21927
Disclosure Date: December 22, 2021 (last updated February 23, 2025)
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vulnerabilities. This can be done as any authenticated user or through cross-site request forgery at ‘loc_filter’ parameter.
0
Attacker Value
Unknown
CVE-2021-21926
Disclosure Date: December 22, 2021 (last updated February 23, 2025)
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vulnerabilities. This can be done as any authenticated user or through cross-site request forgery at ‘health_filter’ parameter.
0
Attacker Value
Unknown
CVE-2021-21925
Disclosure Date: December 22, 2021 (last updated February 23, 2025)
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vulnerabilities. This can be done as any authenticated user or through cross-site request forgery at ‘firm_filter’ parameter.
0
Attacker Value
Unknown
CVE-2021-21924
Disclosure Date: December 22, 2021 (last updated February 23, 2025)
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vulnerabilities. This can be done as any authenticated user or through cross-site request forgery at ‘desc_filter’ parameter.
0
Attacker Value
Unknown
CVE-2021-21923
Disclosure Date: December 22, 2021 (last updated February 23, 2025)
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘company_filter’ parameter with the administrative account or through cross-site request forgery.
0
Attacker Value
Unknown
CVE-2021-21922
Disclosure Date: December 22, 2021 (last updated February 23, 2025)
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘username_filter’ parameter with the administrative account or through cross-site request forgery.
0
Attacker Value
Unknown
CVE-2021-21921
Disclosure Date: December 22, 2021 (last updated February 23, 2025)
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘name_filter’ parameter with the administrative account or through cross-site request forgery.
0
Attacker Value
Unknown
CVE-2021-21920
Disclosure Date: December 22, 2021 (last updated February 23, 2025)
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘surname_filter’ parameter with the administrative account or through cross-site request forgery.
0
Attacker Value
Unknown
CVE-2021-21919
Disclosure Date: December 22, 2021 (last updated February 23, 2025)
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ord’ parameter. However, the high privilege super-administrator account needs to be used to achieve exploitation without cross-site request forgery attack.
0
Attacker Value
Unknown
CVE-2021-21918
Disclosure Date: December 22, 2021 (last updated February 23, 2025)
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘name_filter’ parameter. However, the high privilege super-administrator account needs to be used to achieve exploitation without cross-site request forgery attack.
0
