What the vulnerability does
01Description
SQL Injection in HandlerPage_KID.ashx in Delta Electronics DIAEnergie versions prior to v1.9.02.001 allows an attacker to inject SQL queries via Network
CVSS base score
8.8/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Key dates
02Disclosure timeline
November 17, 2022
CVE published
October 15, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2024-11722 Frontend Admin by DynamiApps <= 3.25.1 - Unauthenticated SQL Injection
CVE-2025-11556 code-projects Simple Leave Manager user.php sql injection
CVE-2024-36514 SQL Injection
CVE-2025-10062 itsourcecode Student Information Management System login.php sql injection
CVE-2022-4984 ZenTao Biz < 6.5, Max < 3.0, & Open Source Edition 16.5/16.5beta1 SQL Injection via user-login.html
