17 matches found
CVE-2025-61166
An open redirect in Ascertia SigningHub User v10.0 allows attackers to redirect users to a malicious site via a crafted URL...
EUVD-2025-209233
An open redirect in Ascertia SigningHub User v10.0 allows attackers to redirect users to a malicious site via a crafted URL...
CVE-2025-61166
An open redirect in Ascertia SigningHub User v10.0 allows attackers to redirect users to a malicious site via a crafted URL...
CVE-2025-61166
An open redirect in Ascertia SigningHub User v10.0 allows attackers to redirect users to a malicious site via a crafted URL...
CVE-2025-61166
The CVE-2025-61166 entry describes an open redirect in Ascertia SigningHub User v10.0 that lets an attacker redirect authenticated users to a malicious site via a crafted URL. Affected product: Ascertia SigningHub User 10.0 (component: open redirect functionality). Root cause: misimplementation o...
Ascertia SigningHub 安全漏洞
Ascertia SigningHub is an electronic signature software developed by the British company Ascertia. Version 10.0 of Ascertia SigningHub contains a security vulnerability. This vulnerability stems from open redirection, allowing attackers to redirect users to malicious websites through a specially...
PT-2026-30683
An open redirect in Ascertia SigningHub User v10.0 allows attackers to redirect users to a malicious site via a crafted URL...
EUVD-2025-198073
In Ascertia SigningHub through 8.6.8, there is a lack of rate limiting on the reset password function, leading to an email bombing vulnerability. An authenticated attacker can exploit this by automating reset password requests...
CVE-2025-54321
In Ascertia SigningHub through 8.6.8, there is a lack of rate limiting on the reset password function, leading to an email bombing vulnerability. An authenticated attacker can exploit this by automating reset password requests...
CVE-2025-54321
In Ascertia SigningHub through 8.6.8, there is a lack of rate limiting on the reset password function, leading to an email bombing vulnerability. An authenticated attacker can exploit this by automating reset password requests...
CVE-2025-54320
In Ascertia SigningHub through 8.6.8, there is a lack of rate limiting on the invite user function, leading to an email bombing vulnerability. An authenticated attacker can exploit this by automating invite requests...
CVE-2025-54320
In Ascertia SigningHub through 8.6.8, there is a lack of rate limiting on the invite user function, leading to an email bombing vulnerability. An authenticated attacker can exploit this by automating invite requests...
CVE-2025-54321
In Ascertia SigningHub through 8.6.8, there is a lack of rate limiting on the reset password function, leading to an email bombing vulnerability. An authenticated attacker can exploit this by automating reset password requests...
Ascertia SigningHub 安全漏洞
Ascertia SigningHub is an electronic signature software from Ascertia UK. A security vulnerability exists in Ascertia SigningHub version 8.6.8 and prior versions, which stems from a lack of rate limiting in the reset password function and could lead to email bombing...
Ascertia SigningHub 安全漏洞
Ascertia SigningHub is an electronic signature software from Ascertia UK. A security vulnerability exists in Ascertia SigningHub version 8.6.8 and prior versions, which stems from a lack of rate limiting in the Invite Users feature and could lead to email bombing...
CVE-2025-54320
In Ascertia SigningHub up to version 8.6.8, the Invite Users function lacks rate limiting, enabling an authenticated attacker to automate invites and trigger an email bombing scenario. Affected software: Ascertia SigningHub (versions through 8.6.8). Underlying issue: insufficient throttling on th...
CVE-2025-54320
In Ascertia SigningHub through 8.6.8, there is a lack of rate limiting on the invite user function, leading to an email bombing vulnerability. An authenticated attacker can exploit this by automating invite requests...