CVE-2022-1683
published 2022-06-08CVE-2022-1683: The amtyThumb WordPress plugin through 4.2.0 does not sanitise and escape a parameter before using it in a SQL statement via its shortcode, leading to an SQL…
PriorityP351high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
1.51%
71.3th percentile
The amtyThumb WordPress plugin through 4.2.0 does not sanitise and escape a parameter before using it in a SQL statement via its shortcode, leading to an SQL injection and is exploitable by any authenticated user (and not just Author+ like the original advisory mention) due to the fact that they can execute shortcodes via an AJAX action
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amtythumb_project | amtythumb | <= 4.2.0 | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Talos
Vulnerability Spotlight: WellinTech ICS platform vulnerable to information disclosure, buffer overflow vulnerabilities
blogs_talos·2023-03-21·CVSS 8.1
CVE-2022-45124 [HIGH] Vulnerability Spotlight: WellinTech ICS platform vulnerable to information disclosure, buffer overflow vulnerabilities
Cisco Talos recently discovered two vulnerabilities in WellinTech’s KingHistorian industrial control systems data manager.
KingHistorian is a time-series database that allows users to ingest and process large amounts of data from ICS, including built-in statistical analysis.
Talos discovered an information disclosure vulnerability (TALOS-2022-1683/CVE-2022-45124) in the software’s user authentication function. If an adversary could capture an authentication packet, it contains all the necessary information to steal the target user’s username and password for the software.
Another vulnerability, TALOS-2022-1674 (CVE-2022-43663) exists in a DLL in the software that could allow an adversary to cause a buffer overflow by sending a malicious packet to the targeted machine.
Cisco Talos worke
Talos
Vulnerability Spotlight: WellinTech ICS platform vulnerable to information disclosure, buffer overflow vulnerabilities
blogs_talos·2023-03-21·CVSS 8.1
CVE-2022-45124 [HIGH] Vulnerability Spotlight: WellinTech ICS platform vulnerable to information disclosure, buffer overflow vulnerabilities
## Vulnerability Spotlight: WellinTech ICS platform vulnerable to information disclosure, buffer overflow vulnerabilities
Cisco Talos recently discovered two vulnerabilities in WellinTech’s KingHistorian industrial control systems data manager.
KingHistorian is a time-series database that allows users to ingest and process large amounts of data from ICS, including built-in statistical analysis.
Talos discovered an information disclosure vulnerability ( TALOS-2022-1683 /CVE-2022-45124) in the software’s user authentication function. If an adversary could capture an authentication packet, it contains all the necessary information to steal the target user’s username and password for the software.
Another vulnerability, TALOS-2022-1674 (CVE-2022-43663) exists in a DLL in the software that
2022-06-08
Published