CVE-2026-40831
- EPSS 0.32%
- Veröffentlicht 27.05.2026 07:54:35
- Zuletzt bearbeitet 27.05.2026 14:53:22
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the Easy View due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.
CVE-2026-40830
- EPSS 0.3%
- Veröffentlicht 27.05.2026 07:54:13
- Zuletzt bearbeitet 27.05.2026 14:53:22
A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the admin.mbnetj.php files UpdateParam function due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole ...
CVE-2026-40829
- EPSS 0.3%
- Veröffentlicht 27.05.2026 07:53:55
- Zuletzt bearbeitet 27.05.2026 14:53:22
A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the view.html.php files UpdateParam function due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole dat...
CVE-2026-40828
- EPSS 0.3%
- Veröffentlicht 27.05.2026 07:53:34
- Zuletzt bearbeitet 27.05.2026 14:53:22
A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DeleteSysLogEntry function due to improper neutralization of special elements in a SQL DELETE command allowing for reading the whole database and dele...
CVE-2026-40827
- EPSS 0.3%
- Veröffentlicht 27.05.2026 07:53:12
- Zuletzt bearbeitet 27.05.2026 14:53:22
A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the _RemoveRequest function due to improper neutralization of special elements in a SQL DELETE command allowing for reading the whole database and deletin...
CVE-2026-40826
- EPSS 0.28%
- Veröffentlicht 27.05.2026 07:52:45
- Zuletzt bearbeitet 27.05.2026 14:53:22
A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dsgvo_contracts view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.
CVE-2026-40825
- EPSS 0.24%
- Veröffentlicht 27.05.2026 07:52:21
- Zuletzt bearbeitet 27.05.2026 14:53:22
A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the accountstatus view devices parameter due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole databas...
CVE-2026-40824
- EPSS 0.24%
- Veröffentlicht 27.05.2026 07:50:56
- Zuletzt bearbeitet 27.05.2026 14:53:22
A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the accountstatus view userid parameter due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole database...
CVE-2026-40823
- EPSS 0.24%
- Veröffentlicht 27.05.2026 07:50:41
- Zuletzt bearbeitet 27.05.2026 14:53:22
A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DevSerialReset function due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole database and changin...
CVE-2026-40822
- EPSS 0.28%
- Veröffentlicht 27.05.2026 07:50:23
- Zuletzt bearbeitet 27.05.2026 14:53:22
A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DevSerialReset function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality...