deIndra

2 exploits Active since May 2023
CVE-2023-36076 NOMISEC CRITICAL WORKING POC
smanga < 3.1.9 - SQL Injection via mediaId, mangaId, and userId Parameters
SQL Injection vulnerability in smanga version 3.1.9 and earlier, allows remote attackers to execute arbitrary code and gain sensitive information via mediaId, mangaId, and userId parameters in php/history/add.php.
CVSS 9.8
CVE-2023-1698 NOMISEC CRITICAL WORKING POC
WAGO Compact Controller 100 Firmware 20-22 - Unauthenticated OS Command Injection
In multiple products of WAGO a vulnerability allows an unauthenticated, remote attacker to create new users and change the device configuration which can result in unintended behaviour, Denial of Service and full system compromise.
CVSS 9.8