andreysanyuk

2 exploits Active since Nov 2023
CVE-2023-42283 NOMISEC CRITICAL WRITEUP
Tyk Gateway 5.0.3 - Blind SQL Injection via api_id Parameter
Blind SQL injection in api_id parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query.
CVSS 9.8
CVE-2023-42284 NOMISEC CRITICAL WRITEUP
Tyk Gateway 5.0.3 - Blind SQL Injection via api_version Parameter
Blind SQL injection in api_version parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query.
CVSS 9.8