Mbconnectline

Mymbconnect24

86 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.32%
  • Veröffentlicht 27.05.2026 07:54:35
  • Zuletzt bearbeitet 27.05.2026 14:53:22

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the Easy View due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.

  • EPSS 0.3%
  • Veröffentlicht 27.05.2026 07:54:13
  • Zuletzt bearbeitet 27.05.2026 14:53:22

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the admin.mbnetj.php files UpdateParam function due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole ...

  • EPSS 0.3%
  • Veröffentlicht 27.05.2026 07:53:55
  • Zuletzt bearbeitet 27.05.2026 14:53:22

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the view.html.php files UpdateParam function due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole dat...

  • EPSS 0.3%
  • Veröffentlicht 27.05.2026 07:53:34
  • Zuletzt bearbeitet 27.05.2026 14:53:22

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DeleteSysLogEntry function due to improper neutralization of special elements in a SQL DELETE command allowing for reading the whole database and dele...

  • EPSS 0.3%
  • Veröffentlicht 27.05.2026 07:53:12
  • Zuletzt bearbeitet 27.05.2026 14:53:22

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the _RemoveRequest function due to improper neutralization of special elements in a SQL DELETE command allowing for reading the whole database and deletin...

  • EPSS 0.28%
  • Veröffentlicht 27.05.2026 07:52:45
  • Zuletzt bearbeitet 27.05.2026 14:53:22

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dsgvo_contracts view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.

  • EPSS 0.24%
  • Veröffentlicht 27.05.2026 07:52:21
  • Zuletzt bearbeitet 27.05.2026 14:53:22

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the accountstatus view devices parameter due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole databas...

  • EPSS 0.24%
  • Veröffentlicht 27.05.2026 07:50:56
  • Zuletzt bearbeitet 27.05.2026 14:53:22

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the accountstatus view userid parameter due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole database...

  • EPSS 0.24%
  • Veröffentlicht 27.05.2026 07:50:41
  • Zuletzt bearbeitet 27.05.2026 14:53:22

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DevSerialReset function due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole database and changin...

  • EPSS 0.28%
  • Veröffentlicht 27.05.2026 07:50:23
  • Zuletzt bearbeitet 27.05.2026 14:53:22

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DevSerialReset function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality...