Suggestions search

All statuses

Filter by:

With package: DisnixWebService

Found 2 matching suggestions

View:

Compact

Detailed

Untriaged

Permalink CVE-2024-7202

9.8 CRITICAL

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 6 months ago

Simopro Technology WinMatrix3 Web package - SQL Injection

The query functionality of WinMatrix3 Web package from Simopro Technology lacks proper validation of user input, allowing unauthenticated remote attackers to inject SQL commands to read, modify, and delete database contents.

References

https://www.twcert.org.tw/en/cp-139-7963-44648-2.html vendor-advisory
https://www.twcert.org.tw/tw/cp-132-7962-dd216-1.html vendor-advisory
https://www.twcert.org.tw/tw/cp-132-7962-dd216-1.html vendor-advisory
https://www.twcert.org.tw/en/cp-139-7963-44648-2.html vendor-advisory
https://www.twcert.org.tw/tw/cp-132-7962-dd216-1.html vendor-advisory
https://www.twcert.org.tw/en/cp-139-7963-44648-2.html vendor-advisory
https://www.twcert.org.tw/tw/cp-132-7962-dd216-1.html vendor-advisory x_transferred
https://www.twcert.org.tw/en/cp-139-7963-44648-2.html vendor-advisory x_transferred

Affected products

Web

=<1.2.35.3

winmatrix3

=<1.2.35.3

Matching in nixpkgs

pkgs.DisnixWebService

SOAP interface and client for Disnix

nixos-unstable -
- nixpkgs-unstable 0.10.1

pkgs.perlPackages.WebMachine

Perl port of Webmachine

nixos-unstable -
- nixpkgs-unstable 0.17

pkgs.perlPackages.WebScraper

Web Scraping Toolkit using HTML and CSS Selectors or XPath expressions

nixos-unstable -
- nixpkgs-unstable 0.38

pkgs.perlPackages.MusicBrainz

API to search the musicbrainz.org database

nixos-unstable -
- nixpkgs-unstable 1.0.6

pkgs.perlPackages.JSONWebToken

JSON Web Token (JWT) implementation

nixos-unstable -
- nixpkgs-unstable 0.10

pkgs.perl538Packages.WebMachine

Perl port of Webmachine

nixos-unstable -
- nixpkgs-unstable 0.17

pkgs.perl538Packages.WebScraper

Web Scraping Toolkit using HTML and CSS Selectors or XPath expressions

nixos-unstable -
- nixpkgs-unstable 0.38

pkgs.perl540Packages.WebMachine

Perl port of Webmachine

nixos-unstable -
- nixpkgs-unstable 0.17

pkgs.perl540Packages.WebScraper

Web Scraping Toolkit using HTML and CSS Selectors or XPath expressions

nixos-unstable -
- nixpkgs-unstable 0.38

pkgs.perl538Packages.MusicBrainz

API to search the musicbrainz.org database

nixos-unstable -
- nixpkgs-unstable 1.0.6

pkgs.perl540Packages.MusicBrainz

API to search the musicbrainz.org database

nixos-unstable -
- nixpkgs-unstable 1.0.6

pkgs.perl538Packages.JSONWebToken

JSON Web Token (JWT) implementation

nixos-unstable -
- nixpkgs-unstable 0.10

pkgs.perl540Packages.JSONWebToken

JSON Web Token (JWT) implementation

nixos-unstable -
- nixpkgs-unstable 0.10

pkgs.perlPackages.WebServiceLinode

Perl Interface to the Linode.com API

nixos-unstable -
- nixpkgs-unstable 0.29

pkgs.perlPackages.NetAsyncWebSocket

Use WebSockets with IO::Async

nixos-unstable -
- nixpkgs-unstable 0.14

pkgs.perlPackages.ProtocolWebSocket

WebSocket protocol

nixos-unstable -
- nixpkgs-unstable 0.26

pkgs.perl538Packages.WebServiceLinode

Perl Interface to the Linode.com API

nixos-unstable -
- nixpkgs-unstable 0.29

pkgs.perl540Packages.WebServiceLinode

Perl Interface to the Linode.com API

nixos-unstable -
- nixpkgs-unstable 0.29

pkgs.perl538Packages.NetAsyncWebSocket

Use WebSockets with IO::Async

nixos-unstable -
- nixpkgs-unstable 0.14

pkgs.perl538Packages.ProtocolWebSocket

WebSocket protocol

nixos-unstable -
- nixpkgs-unstable 0.26

pkgs.perl540Packages.NetAsyncWebSocket

Use WebSockets with IO::Async

nixos-unstable -
- nixpkgs-unstable 0.14

pkgs.perl540Packages.ProtocolWebSocket

WebSocket protocol

nixos-unstable -
- nixpkgs-unstable 0.26

pkgs.perlPackages.MojoliciousPluginWebpack

Mojolicious <3 Webpack

nixos-unstable -
- nixpkgs-unstable 1.02

pkgs.perlPackages.WebServiceValidatorHTMLW3C

Access the W3Cs online HTML validator

nixos-unstable -
- nixpkgs-unstable W3C-0.28

pkgs.perl538Packages.MojoliciousPluginWebpack

Mojolicious <3 Webpack

nixos-unstable -
- nixpkgs-unstable 1.02

pkgs.perl540Packages.MojoliciousPluginWebpack

Mojolicious <3 Webpack

nixos-unstable -
- nixpkgs-unstable 1.02

pkgs.perl538Packages.WebServiceValidatorHTMLW3C

Access the W3Cs online HTML validator

nixos-unstable -
- nixpkgs-unstable W3C-0.28

pkgs.perl540Packages.WebServiceValidatorHTMLW3C

Access the W3Cs online HTML validator

nixos-unstable -
- nixpkgs-unstable W3C-0.28

pkgs.vscode-extensions.amazonwebservices.amazon-q-vscode

Amazon Q, CodeCatalyst, Local Lambda debug, SAM/CFN syntax, ECS Terminal, AWS resources

nixos-unstable -
- nixpkgs-unstable 1.93.0

Package maintainers

@svanderburg Sander van der Burg <s.vanderburg@tudelft.nl>
@stigtsp Stig Palmquist <stig@stig.io>
@zakame Zak B. Elep <zakame@zakame.net>

Untriaged

Permalink CVE-2024-7201

9.8 CRITICAL

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 6 months ago

Simopro Technology WinMatrix3 Web package - SQL Injection

The login functionality of WinMatrix3 Web package from Simopro Technology lacks proper validation of user input, allowing unauthenticated remote attackers to inject SQL commands to read, modify, and delete database contents.