AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
It was possible to inject custom SQL commands into the "Student Busing Information" search queries. TripSpark VEO Transportation-2.2.x-XP_BB-20201123-184084 NovusEDU-2.2.x-XP_BB-20201123-184084 allows unsafe data inputs in POST body parameters from end users without sanitizing using server-side logic. Please note that some of the information in the bulletin is compiled from external, open-source reports and is not a direct result of CISA analysis.Īn issue found in Earcms Ear App v.20181124 allows a remote cyber threat actor to execute arbitrary code via the uload/index-uplog.php. Patch information is provided when available. This information may include identifying information, values, definitions, and related links.
0 Comments
Read More
Leave a Reply. |