1 results (0.001 seconds)
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1
CVE-2022-24121
https://notcve.org/view.php?id=CVE-2022-24121
SQL Injection vulnerability discovered in Unified Office Total Connect Now that would allow an attacker to extract sensitive information through a cookie parameter. Se ha detectado una vulnerabilidad de inyección SQL en Unified Office Total Connect Now que permitiría a un atacante extraer información confidencial mediante de un parámetro de cookie • https://unifiedoffice.com/total-connect-now https://www.coresecurity.com/core-labs/advisories/unified-office-total-connect-sql-injection • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •