Filtered by vendor Bukts
Subscribe
Filtered by product Buk Ts-g Gas Station Automation System
Subscribe
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2026-3843 | 2 Bukts, Linux | 2 Buk Ts-g Gas Station Automation System, Linux Kernel | 2026-05-07 | N/A | 9.8 CRITICAL |
| Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 on Linux contains a SQL Injection vulnerability (CWE-89) in the system configuration module. A remote attacker can send specially crafted HTTP POST requests to the /php/request.php endpoint via the sql parameter in application/x-www-form-urlencoded data (e.g., action=do&sql=<query_here>&reload_driver=0) to execute arbitrary SQL commands and potentially achieve remote code execution. | |||||