39 matches found
CVE-2025-15025
Authorization bypass through User-Controlled key vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. Library Automation System allows Exploitation of Trusted Identifiers. This issue affects Library Automation System: from v.21.6 befor...
CVE-2025-15025
Authorization bypass through User-Controlled key vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. Library Automation System allows Exploitation of Trusted Identifiers. This issue affects Library Automation System: from v.21.6 befor...
CVE-2025-15025
CVE-2025-15025 : In the Library Automation System, versions prior to 22.1 (from 21.6) are affected by an authorization bypass via a User-Controlled key, leading to exploitation of trusted identifiers. The issue is described as an IDOR-style authorization bypass with high impact (confidentiality, ...
EUVD-2025-209843
Authorization bypass through User-Controlled key vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. Library Automation System allows Exploitation of Trusted Identifiers. This issue affects Library Automation System: from v.21.6 befor...
Yordam Library Automation System 安全漏洞
Yordam Library Automation System is an application developed by Yordam Corporation. Versions of the Yordam Library Automation System from v.21.6 to v.22.1 had security vulnerabilities. These vulnerabilities were caused by user-controlled keys that allowed unauthorized access to authorization...
PT-2026-40915
Authorization bypass through User-Controlled key vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. Library Automation System allows Exploitation of Trusted Identifiers. This issue affects Library Automation System: from v.21.6 befor...
CVE-2026-21268
Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file and scope is...
CVE-2026-21274 Dreamweaver Desktop | Incorrect Authorization (CWE-863)
Dreamweaver Desktop versions 21.6 and earlier are affected by an Incorrect Authorization vulnerability that could result in arbitrary code execution in the context of the current user. An attacker could leverage this vulnerability to bypass security measures and execute unauthorized code...
CVE-2026-21272 Dreamweaver Desktop | Improper Input Validation (CWE-20)
Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system write. An attacker could leverage this vulnerability to manipulate or inject malicious data into files on the system. Exploitation of this issue requir...
CVE-2026-21272
Affected software. Dreamweaver Desktop, version 21.6 and earlier. Vulnerability and impact. An Improper Input Validation vulnerability could lead to arbitrary file system write, with high impact to confidentiality, integrity, and availability as per the provided metrics. Exploitation requires use...
CVE-2026-21268
CVE-2026-21268 affects Adobe Dreamweaver Desktop 21.6 and earlier, due to an Improper Input Validation vulnerability that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (opening a malicious file). Mitigation: Adobe released APSB26-0...
Adobe Dreamweaver Desktop 安全漏洞
Adobe Dreamweaver is a professional web code editor and web development tool developed by Adobe. Adobe Dreamweaver suffers from an authorization issue vulnerability that can be exploited by attackers to execute arbitrary code on the system...
EUVD-2025-29709
Malicious code in bioql PyPI...
CVE-2025-10439
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Yordam Informatics Yordam Library Automation System allows SQL Injection.This issue affects Yordam Library Automation System: from 21.5 & 21.6 before 21.7...
CVE-2025-10439
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Yordam Informatics Yordam Library Automation System allows SQL Injection.This issue affects Yordam Library Automation System: from 21.5 & 21.6 before 21.7...
CVE-2025-10439 SQLi in Yordam Library Automation System
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Yordam Informatics Yordam Library Automation System allows SQL Injection.This issue affects Yordam Library Automation System: from 21.5 & 21.6 before 21.7...
PT-2025-38144
Name of the Vulnerable Software and Affected Versions: Yordam Informatics Yordam Library Automation System versions 21.5 through 21.6 Description: The Yordam Library Automation System is susceptible to a SQL Injection issue due to improper neutralization of special elements used in an SQL command...
Adobe Dreamweaver CSRF Vulnerability (APSB25-91) - Windows
Adobe Dreamweaver is prone to a cross-site request forgery CSRF vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2025-46660
An issue was discovered in 4C Strategies Exonaut 21.6. Passwords, stored in the database, are hashed without a salt...
CVE-2025-46660
An issue was discovered in 4C Strategies Exonaut 21.6. Passwords, stored in the database, are hashed without a salt...