Vulnerabilities

CVE-2020-22122

August 24, 2021

A SQL injection vulnerability in /oa.php?c=Staff&a=read of Find a Place LJCMS v 1.3 allows attackers to access sensitive database information via a crafted POST request.

Summary:

A SQL injection vulnerability in /oa.php?c=Staff&a=read of Find a Place LJCMS v 1.3 allows attackers to access sensitive database information via a crafted POST request.

Reference Links(if available):

https://github.com/876054426/vul/blob/master/ljcms_sql.md

CVSS Score (if available)

v2: / MEDIUM

v3: /

Links to Exploits(if available)

Tags: CVE, CVE-2020-22122, exploit, MISC, vulnerability

CVE-2020-22122

Summary:

Reference Links(if available):

CVSS Score (if available)

Links to Exploits(if available)

CACTUS Ransomware Victim: https://www[.]xdconnects[.]com/

Cyber Assessment Framework 3.2

Palo Alto Products Remote Code Execution Vulnerability

Le Slip Français – 1,495,127 breached accounts

CISA: Juniper Releases Security Bulletin for Multiple Juniper Products

Summary:

Reference Links(if available):

CVSS Score (if available)

Links to Exploits(if available)

You may have missed

CACTUS Ransomware Victim: https://www[.]xdconnects[.]com/

Cyber Assessment Framework 3.2

Palo Alto Products Remote Code Execution Vulnerability

Le Slip Français – 1,495,127 breached accounts

CISA: Juniper Releases Security Bulletin for Multiple Juniper Products