MyNET up to v26.08.316 was discovered to contain an Unauthenticated SQL Injection vulnerability via the intmenu parameter.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:NAirc Mynet
APPAirc≤ 26.08.316
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SQLi
CWE
Related vulnerabilities
CVE-2024-27708CRITICAL9.6PL ✓ten sam produkt
Iframe injection w Airc MyNET — zdalne wykonanie kodu przez parametr src
CVE-2024-35322MEDIUM6.1ten sam produkt
MyNET up to v26.08 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the fich...
CVE-2024-40317MEDIUM6.1ten sam produkt
A reflected cross-site scripting (XSS) vulnerability in MyNET up to v26.08 allows attackers to execute arbitra...
CVE-2024-25812MEDIUM6.1ten sam produkt
MyNET up to v26.05 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the src ...
CVE-2024-25814MEDIUM6.1ten sam produkt
MyNET up to v26.05 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the msg ...