An SQL injection vulnerability has been reported for Delta Industrial Automation DIAEnergie. This vulnerability is due to improper input validation in the DIAE_tagHandler.ashx script.A remote, authenticated attacker could exploit this vulnerability by sending a crafted request to the target server. Successfully exploiting this vulnerability could result in SQL injection.

An SQL injection vulnerability has been reported for Delta Industrial Automation DIAEnergie. This vulnerability is due to improper input validation in the GetDIAE_slogListParameters component.

An SQL injection vulnerability has been reported in Cacti. The vulnerability is due to improper validation of user input used in the build_graph_object_sql_having function.

A remote code execution vulnerability has been reported in pgAdmin. The vulnerability is due to improper validation of a file path used in the validate_binary_path endpoint.

Threat Encyclopedia

1234858

ICS Delta Industrial Automation DIAEnergie DIAE_tagHandler.ashx SQL Injection (CVE-2024-25937)

High

2026/01/13

1234797

ICS Delta Industrial Automation DIAEnergie GetDIAE_slogListParameters SQL Injection (CVE-2024-23975)

Critical

2026/01/13

1235195

WEB Cacti Group Cacti build_graph_object_sql_having SQL Injection -1 (CVE-2024-31445) state 1-F/Flow

High

2026/01/13

1234831

WEB pgAdmin validate_binary_path CVE-2024-3116 Remote Code Execution

High

2026/01/13