Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

OBS Security Vulnerabilities

cve
cve

CVE-2024-2277

A vulnerability was found in Bdtask G-Prescription Gynaecology & OBS Consultation Software 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /Setting/change_password_save of the component Password Reset Handler. The manipulation leads to cross-site....

4.3CVSS

7.1AI Score

0.0004EPSS

2024-03-08 02:15 AM
29
cve
cve

CVE-2024-2275

A vulnerability, which was classified as problematic, was found in Bdtask G-Prescription Gynaecology & OBS Consultation Software 1.0. Affected is an unknown function of the component OBS Patient/Gynee Prescription. The manipulation of the argument Patient Title/Full Name/Address/Cheif...

2.4CVSS

6.5AI Score

0.0004EPSS

2024-03-08 01:15 AM
30
cve
cve

CVE-2024-2276

A vulnerability has been found in Bdtask G-Prescription Gynaecology & OBS Consultation Software 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /Venue_controller/edit_venue/ of the component Edit Venue Page. The manipulation of the argument....

2.4CVSS

6.5AI Score

0.0004EPSS

2024-03-08 01:15 AM
29
cve
cve

CVE-2024-2274

A vulnerability, which was classified as problematic, has been found in Bdtask G-Prescription Gynaecology & OBS Consultation Software 1.0. This issue affects some unknown processing of the file /Home/Index of the component Prescription Dashboard. The manipulation of the argument Title leads to...

2.4CVSS

6.5AI Score

0.0004EPSS

2024-03-08 01:15 AM
29
cve
cve

CVE-2023-1726

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Proliz OBS allows Stored XSS for an authenticated user.This issue affects OBS: before...

5.4CVSS

5.1AI Score

0.0005EPSS

2023-04-07 01:15 PM
20
cve
cve

CVE-2010-3782

obs-server before 1.7.7 allows logins by 'unconfirmed' accounts due to a bug in the REST api...

8.8CVSS

8.5AI Score

0.001EPSS

2020-01-02 07:15 PM
60
cve
cve

CVE-2014-0593

The set_version script as shipped with obs-service-set_version is a source validator for the Open Build Service (OBS). In versions prior to 0.5.3-1.1 this script did not properly sanitize the input provided by the user, allowing for code execution on the executing...

9.8CVSS

7.9AI Score

0.013EPSS

2018-06-08 05:29 PM
18
cve
cve

CVE-2017-9274

A shell command injection in the obs-service-source_validator before 0.7 could be used to execute code as the packager when checking RPM SPEC files with specific macro...

7.8CVSS

7.8AI Score

0.003EPSS

2018-03-01 08:29 PM
21