CVE-2024-4893 [CRITICAL] :

DigiWin EasyFlow .NET lacks validation for certain input parameters, allowing remote attackers to inject arbitrary SQL commands. This vulnerability enables unauthorized access to read, modify, and delete database records, as well as execute system commands.

Explore Atomic Red Team

advisory
threat

Atomic Red Team™ is library of tests mapped to the MITRE ATT&CK framework. Security teams can use Atomic Red Team to quickly, portably, and reproducibly test their environments.

https://atomicredteam.io/atomics/

Listed: Thu Nov 09 2023