Archerydms

Archery

15 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2022-38539

  • EPSS 0.31%
  • Published 13.09.2022 15:15:09
  • Last modified 21.11.2024 07:16:38

Archery v1.7.5 to v1.8.5 was discovered to contain a SQL injection vulnerability via the where parameter at /archive/apply.

9.8

CVE-2022-38540

  • EPSS 0.39%
  • Published 13.09.2022 15:15:09
  • Last modified 21.11.2024 07:16:38

Archery v1.4.0 to v1.8.5 was discovered to contain a SQL injection vulnerability via the ThreadIDs parameter in the create_kill_session interface.

9.8

CVE-2022-38541

Exploit
  • EPSS 0.38%
  • Published 13.09.2022 15:15:09
  • Last modified 21.11.2024 07:16:38

Archery v1.8.3 to v1.8.5 was discovered to contain multiple SQL injection vulnerabilities via the start_time and stop_time parameters in the my2sql interface.

9.8

CVE-2022-38542

  • EPSS 0.31%
  • Published 13.09.2022 15:15:09
  • Last modified 21.11.2024 07:16:38

Archery v1.4.0 to v1.8.5 was discovered to contain a SQL injection vulnerability via the ThreadIDs parameter in the kill_session interface. The project has released an update, please upgrade to v1.9.0 and above.

9.8

CVE-2022-38537

  • EPSS 0.39%
  • Published 13.09.2022 15:15:08
  • Last modified 21.11.2024 07:16:38

Archery v1.4.5 to v1.8.5 was discovered to contain multiple SQL injection vulnerabilities via the start_file, end_file, start_time, and stop_time parameters in the binlog2sql interface.