all InfoSec news
CVE-2023-4485 (sistemas_scada)
Sept. 6, 2023, 12:15 a.m. |
National Vulnerability Database web.nvd.nist.gov
login page are vulnerable to an unauthenticated blind SQL injection attack. An attacker could manipulate the application's SQL query logic to extract sensitive information or perform unauthorized actions within the database. In this case, the vulnerability could allow an attacker to execute arbitrary SQL queries through the login page, potentially leading to unauthorized access, data leakage, or even disruption of critical industrial processes.
actions application attack attacker case cve database extract information injection injection attack logic login page query scada sensitive sensitive information sql sql injection sql injection attack sql query unauthenticated vulnerability vulnerable
More from web.nvd.nist.gov / National Vulnerability Database
CVE-2023-45955 (lightstrip_firmware)
6 months, 1 week ago |
web.nvd.nist.gov
CVE-2023-21380 (android)
6 months, 1 week ago |
web.nvd.nist.gov
CVE-2023-21381 (android)
6 months, 1 week ago |
web.nvd.nist.gov
CVE-2023-21385 (android)
6 months, 1 week ago |
web.nvd.nist.gov
Jobs in InfoSec / Cybersecurity
Network Security Analyst
@ Wiz | Tel Aviv
Penetration Testing Staff Engineer- Turkey Remote
@ SonicWall | Istanbul, Istanbul, Türkiye
Physical Security Engineer
@ Microsoft | Atlanta, Georgia, United States
Junior Security Consultant (m/w/d)
@ Deutsche Telekom | Berlin, Deutschland
Senior Cybersecurity Product Specialist - Security Endpoint Protection
@ Pacific Gas and Electric Company | San Ramon, CA, US, 94583
Security Engineer, Pre-Sales (PA/NJ)
@ Vectra | US - South New Jersey, US - Pennsylvania