Filtered by vendor Ehoney Project
Subscribe
Total
6 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-38868 | 1 Ehoney Project | 1 Ehoney | 2023-02-22 | N/A | 7.2 HIGH |
SQL Injection vulnerability in Ehoney version 2.0.0 in models/protocol.go and models/images.go, allows attackers to execute arbitrary code. | |||||
CVE-2022-3735 | 1 Ehoney Project | 1 Ehoney | 2022-10-31 | N/A | 9.8 CRITICAL |
A vulnerability was found in seccome Ehoney. It has been rated as critical. This issue affects some unknown processing of the file /api/public/signup. The manipulation leads to improper access controls. The identifier VDB-212417 was assigned to this vulnerability. | |||||
CVE-2022-3732 | 1 Ehoney Project | 1 Ehoney | 2022-10-31 | N/A | 9.8 CRITICAL |
A vulnerability was found in seccome Ehoney and classified as critical. Affected by this issue is some unknown functionality of the file /api/v1/bait/set. The manipulation of the argument Payload leads to sql injection. The attack may be launched remotely. VDB-212414 is the identifier assigned to this vulnerability. | |||||
CVE-2022-3731 | 1 Ehoney Project | 1 Ehoney | 2022-10-31 | N/A | 9.8 CRITICAL |
A vulnerability has been found in seccome Ehoney and classified as critical. Affected by this vulnerability is an unknown functionality of the file /api/v1/attack/token. The manipulation of the argument Payload leads to sql injection. The attack can be launched remotely. The identifier VDB-212413 was assigned to this vulnerability. | |||||
CVE-2022-3730 | 1 Ehoney Project | 1 Ehoney | 2022-10-31 | N/A | 9.8 CRITICAL |
A vulnerability, which was classified as critical, was found in seccome Ehoney. Affected is an unknown function of the file /api/v1/attack/falco. The manipulation of the argument Payload leads to sql injection. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-212412. | |||||
CVE-2022-3729 | 1 Ehoney Project | 1 Ehoney | 2022-10-31 | N/A | 9.8 CRITICAL |
A vulnerability, which was classified as critical, has been found in seccome Ehoney. This issue affects some unknown processing of the file /api/v1/attack. The manipulation of the argument AttackIP leads to sql injection. The attack may be initiated remotely. The associated identifier of this vulnerability is VDB-212411. |