Vulnerability CVE-2022-43447


Published: 2022-11-17   Modified: 2022-11-18

Description:
SQL Injection in AM_EBillAnalysis.aspx in Delta Electronics DIAEnergie versions prior to v1.9.02.001 allows an attacker to inject SQL queries via Network

Type:

CWE-89

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

 References:
https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-06

Copyright 2022, cxsecurity.com

 

Back to Top