9 matches found
EUVD-2025-23886
Malicious code in bioql PyPI...
Bottinelli Informatical Vedo Suite Access Control Error Vulnerability
Bottinelli Informatical Vedo Suite is an enterprise software suite for the textile and design industry from Bottinelli Informatica, Italy. An access control error vulnerability exists in Bottinelli Informatical Vedo Suite, which can be exploited by an attacker to obtain an elevated privilege JWT...
CVE-2025-51058
Bottinelli Informatical Vedo Suite 2024.17 is vulnerable to Server-side Request Forgery SSRF in the /apivedo/video/preview endpoint, which allows remote authenticated attackers to trigger HTTP requests towards arbitrary remote paths via the "file" URL parameter...
CVE-2025-51058
Bottinelli Informatical Vedo Suite 2024.17 is vulnerable to Server-side Request Forgery SSRF in the /apivedo/video/preview endpoint, which allows remote authenticated attackers to trigger HTTP requests towards arbitrary remote paths via the "file" URL parameter...
CVE-2025-51058
Bottinelli Informatical Vedo Suite 2024.17 is vulnerable to Server-side Request Forgery SSRF in the /apivedo/video/preview endpoint, which allows remote authenticated attackers to trigger HTTP requests towards arbitrary remote paths via the "file" URL parameter...
CVE-2025-51058
Bottinelli Informatical Vedo Suite 2024.17 is vulnerable to Server-side Request Forgery SSRF in the /apivedo/video/preview endpoint, which allows remote authenticated attackers to trigger HTTP requests towards arbitrary remote paths via the "file" URL parameter...
PT-2025-32222 · Bottinelli Informatical · Vedo Suite
Name of the Vulnerable Software and Affected Versions: Bottinelli Informatical Vedo Suite version 2024.17 Description: Bottinelli Informatical Vedo Suite 2024.17 is vulnerable to Server-side Request Forgery SSRF in the /api vedo/video/preview endpoint. This allows remote authenticated attackers t...
CVE-2025-51058
The CVE-2025-51058 issue affects Bottinelli Informatical Vedo Suite 2024.17. The vulnerability is a Server-Side Request Forgery (SSRF) in the /api_vedo/video/preview endpoint, where an authenticated remote attacker can cause HTTP requests to arbitrary remote paths by supplying a file URL paramete...
Bottinelli Informatical Vedo Suite 安全漏洞
Bottinelli Informatical Vedo Suite is an enterprise software suite for the textile and design industry from Bottinelli Informatica, Italy. An access control error vulnerability exists in Bottinelli Informatical Vedo Suite, which can be exploited by an attacker to obtain an elevated privilege JWT...