Mbconnectline

Mbconnect24

86 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.31%
  • Veröffentlicht 23.06.2026 07:34:10
  • Zuletzt bearbeitet 23.06.2026 14:33:10

An high privileged remote attacker can access a hidden configuration method, that should not be accessible by any user, to modify critical program parameters. This can result in a total loss of confidentiality, integrity and availability.

  • EPSS 0.4%
  • Veröffentlicht 27.05.2026 08:00:01
  • Zuletzt bearbeitet 27.05.2026 14:53:22

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getAccountData function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentialit...

  • EPSS 0.26%
  • Veröffentlicht 27.05.2026 07:59:44
  • Zuletzt bearbeitet 27.05.2026 14:53:22

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the user_alarmprofile view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.

  • EPSS 0.26%
  • Veröffentlicht 27.05.2026 07:59:29
  • Zuletzt bearbeitet 27.05.2026 14:53:22

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the tag view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.

  • EPSS 0.26%
  • Veröffentlicht 27.05.2026 07:59:14
  • Zuletzt bearbeitet 27.05.2026 14:53:22

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the system_tag view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.

  • EPSS 0.26%
  • Veröffentlicht 27.05.2026 07:58:59
  • Zuletzt bearbeitet 27.05.2026 14:53:22

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the system view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.

  • EPSS 0.26%
  • Veröffentlicht 27.05.2026 07:58:44
  • Zuletzt bearbeitet 27.05.2026 14:53:22

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the devices_configuration view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidential...

  • EPSS 0.26%
  • Veröffentlicht 27.05.2026 07:58:25
  • Zuletzt bearbeitet 27.05.2026 14:53:22

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dashboard view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.

  • EPSS 0.26%
  • Veröffentlicht 27.05.2026 07:58:05
  • Zuletzt bearbeitet 27.05.2026 14:53:22

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the alarming view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.

  • EPSS 0.26%
  • Veröffentlicht 27.05.2026 07:57:52
  • Zuletzt bearbeitet 27.05.2026 14:53:22

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getWidgetTags function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.