Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Ehoney Project Subscribe
Filtered by product Ehoney
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-38868 1 Ehoney Project 1 Ehoney 2023-02-22 N/A 7.2 HIGH
SQL Injection vulnerability in Ehoney version 2.0.0 in models/protocol.go and models/images.go, allows attackers to execute arbitrary code.
CVE-2022-3735 1 Ehoney Project 1 Ehoney 2022-10-31 N/A 9.8 CRITICAL
A vulnerability was found in seccome Ehoney. It has been rated as critical. This issue affects some unknown processing of the file /api/public/signup. The manipulation leads to improper access controls. The identifier VDB-212417 was assigned to this vulnerability.
CVE-2022-3732 1 Ehoney Project 1 Ehoney 2022-10-31 N/A 9.8 CRITICAL
A vulnerability was found in seccome Ehoney and classified as critical. Affected by this issue is some unknown functionality of the file /api/v1/bait/set. The manipulation of the argument Payload leads to sql injection. The attack may be launched remotely. VDB-212414 is the identifier assigned to this vulnerability.
CVE-2022-3731 1 Ehoney Project 1 Ehoney 2022-10-31 N/A 9.8 CRITICAL
A vulnerability has been found in seccome Ehoney and classified as critical. Affected by this vulnerability is an unknown functionality of the file /api/v1/attack/token. The manipulation of the argument Payload leads to sql injection. The attack can be launched remotely. The identifier VDB-212413 was assigned to this vulnerability.
CVE-2022-3730 1 Ehoney Project 1 Ehoney 2022-10-31 N/A 9.8 CRITICAL
A vulnerability, which was classified as critical, was found in seccome Ehoney. Affected is an unknown function of the file /api/v1/attack/falco. The manipulation of the argument Payload leads to sql injection. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-212412.
CVE-2022-3729 1 Ehoney Project 1 Ehoney 2022-10-31 N/A 9.8 CRITICAL
A vulnerability, which was classified as critical, has been found in seccome Ehoney. This issue affects some unknown processing of the file /api/v1/attack. The manipulation of the argument AttackIP leads to sql injection. The attack may be initiated remotely. The associated identifier of this vulnerability is VDB-212411.