Lucene search
K

163 matches found

CNNVD
CNNVD
added 2026/03/09 12:0 a.m.6 views

OA-System 安全漏洞

OA-System is an office automation system developed by Miazzy himself. There is a security vulnerability in OA-System, which stems from functions that come from sources outside the scope of trusted control...

9.8CVSS5.8AI score0.00359EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/07 9:17 a.m.27 views

CVE-2025-1301

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Yordam Informatics Library Automation System allows Reflected XSS. This issue affects Library Automation System: before 21.6...

6.1CVSS5.4AI score0.00202EPSS
Exploits0References1
OSV
OSV
added 2025/12/30 11:15 p.m.8 views

CVE-2025-15111

Ksenia Security lares legacy model version 1.6 contains a default credentials vulnerability that allows unauthorized attackers to gain administrative access. Attackers can exploit the weak default administrative credentials to obtain full control of the home automation system...

9.3CVSS5.8AI score0.0053EPSS
Exploits2References4
CNNVD
CNNVD
added 2025/10/30 12:0 a.m.4 views

Seeyon Zhiyuan OA Web Application System 安全漏洞

Seeyon Zhiyuan OA Web Application System is a comprehensive office automation platform from Seeyon. A security vulnerability exists in Seeyon Zhiyuan OA Web Application System 7.0 SP1 and prior versions, which stems from improper encoding and parsing of parameters in thirdpartyController.do, whic...

9.3CVSS6.7AI score0.00602EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-32244

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00585EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2021-32243

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00585EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-46855

Malicious code in bioql PyPI...

6.9CVSS6.6AI score0.00376EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/19 12:31 p.m.8 views

CVE-2025-10439

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Yordam Informatics Yordam Library Automation System allows SQL Injection.This issue affects Yordam Library Automation System: from 21.5 & 21.6 before 21.7...

9.8CVSS7.6AI score0.00328EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/09/17 11:45 a.m.3 views

CVE-2025-10439

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Yordam Informatics Yordam Library Automation System allows SQL Injection. This issue affects Yordam Library Automation System: from 21.5 & 21.6 before 21.7...

9.8CVSS5.6AI score0.00328EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/09/17 12:0 a.m.3 views

Yordam Library Automation System SQL注入漏洞

Yordam Library Automation System is an application from Yordam, Inc. A SQL injection vulnerability exists in Yordam Library Automation System versions 21.5, 21.6, and prior to 21.7, which stems from improper neutralization of a special element and could lead to a SQL injection attack...

9.8CVSS7.8AI score0.00328EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/16 12:0 a.m.4 views

oasys 安全漏洞

oasys is an OA office automation system by the individual developer misstt123. A security vulnerability exists in oasys version 1.1, which stems from a misuse of the parameter aleph in the file src/main/Java/cn/gson/oasys/controller/address/AddrController, which could lead to an SQL injection...

8CVSS7.6AI score0.0046EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 6:25 a.m.6 views

CVE-2024-5682

Improper Restriction of Excessive Authentication Attempts vulnerability in Yordam Information Technology Yordam Library Automation System allows Interface Manipulation. This issue affects Yordam Library Automation System: before 20.1...

6.9CVSS5.8AI score0.00376EPSS
Exploits0References1
OSV
OSV
added 2025/05/02 11:15 a.m.0 views

CVE-2025-1301

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Yordam Informatics Library Automation System allows Reflected XSS.This issue affects Library Automation System: before 21.6...

6.1CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2025/05/02 11:15 a.m.13 views

CVE-2025-1301

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Yordam Informatics Library Automation System allows Reflected XSS. This issue affects Library Automation System: before 21.6...

6.1CVSS0.00202EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/05/02 11:15 a.m.5 views

CVE-2025-1301

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Yordam Informatics Library Automation System allows Reflected XSS. This issue affects Library Automation System: before 21.6...

6.1CVSS5.4AI score0.00202EPSS
Exploits0References3
CVE
CVE
added 2025/05/02 10:59 a.m.59 views

CVE-2025-1301

CVE-2025-1301 — Reflected XSS in Yordam Informatics Library Automation System . The vulnerability stems from improper neutralization of input during web page generation and affects Library Automation System versions prior to 21.6. Reported impact is a reflected XSS vulnerability. Remediation: upg...

6.1CVSS5.4AI score0.00202EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/02 10:59 a.m.16 views

CVE-2025-1301 Reflected XSS in Yordam Informatics' Library Automation System

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Yordam Informatics Library Automation System allows Reflected XSS. This issue affects Library Automation System: before 21.6...

6.1CVSS5.4AI score0.00202EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/02 10:59 a.m.26 views

CVE-2025-1301 Reflected XSS in Yordam Informatics' Library Automation System

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Yordam Informatics Library Automation System allows Reflected XSS. This issue affects Library Automation System: before 21.6...

6.1CVSS0.00202EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/02 12:0 a.m.7 views

PT-2025-18771 · Yordam Informatics · Yordam Informatics Library Automation System

Name of the Vulnerable Software and Affected Versions: Yordam Informatics Library Automation System versions prior to 21.6 Description: The issue affects the Library Automation System, allowing for Reflected XSS due to improper neutralization of input during web page generation. Recommendations:...

7.4CVSS5.8AI score0.00202EPSS
Exploits0References11
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.10 views

The vulnerability of the E-Staff automated recruitment process system, related to data filtering errors, allows a perpetrator to compromise the integrity and accessibility of the protected information.

The vulnerability of the E-Staff recruitment automation system is related to errors in data filtering. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the integrity and accessibility of the protected information...

9.9CVSS5.5AI score
Exploits0
Rows per page
Query Builder