14 matches found
CVE-2025-7760
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ofisimo Web-Based Software Technologies Association Web Package Flora allows XSS Through HTTP Headers.This issue affects Association Web Package Flora: from v3.0 through 03022026. NOTE: The...
CVE-2025-6397
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ankara Hosting Website Design Website Software allows Reflected XSS.This issue affects Website Software: through 03022026. NOTE: The vendor was contacted early about this disclosure but did...
CVE-2025-8461
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Seres Software syWEB allows Reflected XSS.This issue affects syWEB: through 03022026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way...
CVE-2025-5319
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Emit Informatics and Communication Technologies Industry and Trade Ltd. Co. DIGITA Efficiency Management System allows SQL Injection.This issue affects DIGITA Efficiency Management System: through...
CVE-2025-5319
CVE-2025-5319 affects Emit Informatics’ DIGITA Efficiency Management System (DIGITA EMS). Multiple connected sources describe an improper neutralization of special elements in SQL commands (SQL injection) as the root cause, with the DIGITA EMS affected through 03022026. The NVD/Red Hat records co...
CVE-2025-5319 SQLi in Emit Informatics' DIGITA Efficiency Management System
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Emit Informatics and Communication Technologies Industry and Trade Ltd. Co. DIGITA Efficiency Management System allows SQL Injection.This issue affects DIGITA Efficiency Management System: through...
CVE-2025-5319 SQLi in Emit Informatics' DIGITA Efficiency Management System
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Emit Informatics and Communication Technologies Industry and Trade Ltd. Co. DIGITA Efficiency Management System allows SQL Injection.This issue affects DIGITA Efficiency Management System: through...
CVE-2025-7760
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ofisimo Web-Based Software Technologies Association Web Package Flora allows XSS Through HTTP Headers.This issue affects Association Web Package Flora: from v3.0 through 03022026. NOTE: The...
CVE-2025-7760 Reflected XSS in Ofisimo's Association Web Package Flora
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ofisimo Web-Based Software Technologies Association Web Package Flora allows XSS Through HTTP Headers.This issue affects Association Web Package Flora: from v3.0 through 03022026. NOTE: The...
CVE-2025-6397
The CVE-2025-6397 entry corresponds to an XSS in Ankara Hosting Website Design Website Software, specifically a Reflected XSS due to improper neutralization of input during web page generation. The PT-2026-5942 detail identifies the affected software as Ankara Hosting Website Design Website Softw...
CVE-2025-8461
Seres Software syWEB is affected by CVE-2025-8461 through version up to 03022026. The issue is an improper neutralization of input during web page generation, causing a Reflected XSS. Validated details from multiple sources (Red Hat, CIRCL, CVE list, and PT-Security) confirm the vulnerability typ...
PT-2026-5942
Name of the Vulnerable Software and Affected Versions Ankara Hosting Website Design Website Software version 03022026 Description The software contains a Reflected Cross-site Scripting XSS issue due to improper neutralization of input during web page generation. This allows an attacker to inject...
Seres syWEB 跨站脚本漏洞
Seres syWEB is a process automation and management collaboration platform developed by the Turkish company Seres. Versions of Seres syWEB prior to 03022026 contained a cross-site scripting vulnerability. This vulnerability stemmed from improper input during web page generation, which could lead t...
Emit Efficiency Management System SQL注入漏洞
Emit Efficiency Management System is a business process and efficiency management platform developed by the Turkish company Emit. Versions of the Emit Efficiency Management System prior to 03022026 contained a SQL injection vulnerability. This vulnerability stemmed from improper handling of speci...