CVE-2024-7130 Reflected XSS in Kion Computer's KION Exchange Programs Software

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Kion Computer KION Exchange Programs Software allows Reflected XSS. This issue affects KION Exchange Programs Software: before 1.21.9092.29966...

CVE-2024-7026 SQLi in Teknogis Informatics' Closed Circuit Vehicle Tracking Software

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Teknogis Informatics Closed Circuit Vehicle Tracking Software allows SQL Injection, Blind SQL Injection. This issue affects Closed Circuit Vehicle Tracking Software: through 21.11.2024. NOTE: The...

CVE-2024-7016 Stored XSS in Smarttek Informatics' Smart Doctor

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Smarttek Informatics Smart Doctor's allows Stored XSS required admin privileges. This issue affects Smart Doctor: through 21.11.2024. NOTE: The vendor was contacted early about this disclosu...

PT-2024-38033 · Unknown · Smart Doctor

Name of the Vulnerable Software and Affected Versions: Smart Doctor versions through 21.11.2024 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. The vendor was contacted...