Easyflow .net

easyflow_.net

Vendor: Digiwin • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-5964 1Digiwin 1Easyflow .net May 12, 2026 Apr 20, 2026 9.3 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 EasyFlow .NET developed by Digiwin has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.
CVE-2026-5963 1Digiwin 1Easyflow .net May 12, 2026 Apr 20, 2026 9.3 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 EasyFlow .NET developed by Digiwin has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.
CVE-2024-7323 1Digiwin 1Easyflow .net Sep 11, 2024 Aug 2, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Digiwin EasyFlow .NET lacks proper access control for specific functionality, and the functionality do not adequately filter user input. A remote attacker with regular privilege can exploit this vulnerability to download...Show more Digiwin EasyFlow .NET lacks proper access control for specific functionality, and the functionality do not adequately filter user input. A remote attacker with regular privilege can exploit this vulnerability to download arbitrary files from the remote server .Show less