Vulnerabilities > Deltaww > Diaenergie > 1.10.00.005

DATE CVE VULNERABILITY TITLE RISK
2024-10-03 CVE-2024-42417 SQL Injection vulnerability in Deltaww Diaenergie
Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script Handler_CFG.ashx.
network
low complexity
deltaww CWE-89
8.8
8.8
2024-10-03 CVE-2024-43699 SQL Injection vulnerability in Deltaww Diaenergie
Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script AM_RegReport.aspx.
network
low complexity
deltaww CWE-89
critical
 9.8
9.8
2024-05-03 CVE-2024-34031 Unspecified vulnerability in Deltaww Diaenergie 1.10.00.005
Delta Electronics DIAEnergie is vulnerable to an SQL injection vulnerability that exists in the script Handler_CFG.ashx.
network
low complexity
deltaww
8.8
8.8
2024-05-03 CVE-2024-34032 Unspecified vulnerability in Deltaww Diaenergie 1.10.00.005
Delta Electronics DIAEnergie is vulnerable to an SQL injection vulnerability that exists in the GetDIACloudList endpoint.
network
low complexity
deltaww
8.8
8.8
2024-05-03 CVE-2024-34033 Unspecified vulnerability in Deltaww Diaenergie 1.10.00.005
Delta Electronics DIAEnergie has insufficient input validation which makes it possible to perform a path traversal attack and write outside of the intended directory.
network
low complexity
deltaww
8.8
8.8