The regular expression used to validate a guest order's email was subject to exponential backtracking through a fragment like `a.a.` Versions 3.1.4, 3.0.4, and 2.11.13 have been patched to use a different regular expression. Versions of Solidus prior to 3.1.4, 3.0.4, and 2.11.13 have a denial of service vulnerability that could be exploited during a guest checkout. Solidus is a free, open-source ecommerce platform built on Rails. For users unable to upgrade enabling an email domain allow list (from Sysconfig panel, Security tab) will completely resolve the issue. Users should upgrade to at least version 4.2.0. The default settings require administrators to validate newly created accounts. Note that whereas neither administrators nor targeted users are notified of a change, an attacker will need to control an account. This vulnerability impacts all instances that have not set an explicit email domain name allowlist. In versions prior to 4.2.0 there is a vulnerability which allows any authenticated user to gain access to arbitrary accounts by setting a specially crafted email address.
MySCADA myPRO: Versions 8.20.0 and prior has a feature to send emails, which may allow an attacker to inject arbitrary operating system commands through a specific parameter.ĮLabFTW is an electronic lab notebook manager for research teams. The application interacted with that domain, indicating that the injected SQL query was executed. A payload injects a SQL sub-query that calls MySQL's load_file function with a UNC file path that references a URL on an external domain.
The email parameter from ajax.php of Video Sharing Website 1.0 appears to be vulnerable to SQL injection attacks.
0 kommentar(er)
