Maarch : Security Vulnerabilities, CVEs, (Sql injection)
An authenticated SQL Injection vulnerability in the statistics page (/statistics/retrieve) of Maarch RM 2.8, via the filter parameter, allows the complete disclosure of all databases.
Max CVSS
6.5
EPSS Score
0.07%
Published
2022-11-23
Updated
2022-11-26
SQL injection vulnerability in Maarch LetterBox 2.8 allows remote attackers to execute arbitrary SQL commands via the UserId cookie.
Max CVSS
5.0
EPSS Score
0.11%
Published
2014-11-20
Updated
2017-09-08
2 vulnerabilities found