Orange Casiers
Monthly
IzyBat Orange casiers before 20230803_1 allows getEnsemble.php ensemble SQL injection. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
IzyBat Orange casiers before 20221102_1 allows SQL Injection via a getCasier.php?taille= URI. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.
IzyBat Orange casiers before 20230803_1 allows getEnsemble.php ensemble SQL injection. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
IzyBat Orange casiers before 20221102_1 allows SQL Injection via a getCasier.php?taille= URI. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.