Lucene search
+L

10 matches found

CNNVD
CNNVD
added 2026/02/03 12:0 a.m.8 views

Open eClass 安全漏洞

Open eClass is an open-source e-classroom system developed by the Greek Universities Network. Versions of Open eClass prior to 4.2 contained security vulnerabilities. These vulnerabilities were caused by business logic flaws, which could allow authenticated students to mark themselves as attendin...

4.3CVSS5.8AI score0.00201EPSS
Exploits1References2
CVE
CVE
added 2025/04/07 4:23 p.m.51 views

CVE-2025-3426

The CVE-2025-3426 entry describes lack of reverse engineering protections in Philips IntelliSpace Portal binaries, enabling discovery of hardcoded credentials. Affected products are IntelliSpace Portal 12 and earlier and Advanced Visualization Workspace 15. Technical details from connected source...

7.2CVSS7.6AI score0.00154EPSS
Exploits0References2
Veracode
Veracode
added 2024/04/25 7:36 a.m.26 views

Improper Handling Of Case Sensitivity

social-auth-app-django is vulnerable to Improper Handling Of Case Sensitivity. The vulnerability is due to default case-insensitive collation in MySQL or MariaDB databases. This vulnerability could cause different IDs to match, resulting in Business Logic Flaws...

4.9CVSS6.6AI score0.00581EPSS
Exploits0References4Affected Software1
Veracode
Veracode
added 2023/08/06 8:8 p.m.29 views

Business Logic Flaws

GitLab is vulnerable to Business Logic Flaws. The vulnerability exists under specific conditions, which allows an unauthorised project members to delete a protected branches...

4.3CVSS6.5AI score0.00858EPSS
Exploits0References4Affected Software1
Veracode
Veracode
added 2023/04/20 5:38 p.m.20 views

Business Logic Flaws

phpmyfaq is vulnerable to Business Logic Flaws. The vulnerability exists in record.add.php due to improper user permission checks which allows an authenticated attacker with edit-only permissions to add and delete categories or add FAQs...

4.3CVSS4.8AI score0.00699EPSS
Exploits1References5Affected Software2
The Hacker News
The Hacker News
added 2022/12/09 1:48 p.m.51 views

Why is Robust API Security Crucial in eCommerce?

API attacks are on the rise. One of their major targets is eCommerce firms like yours. APIs are a vital part of how eCommerce businesses are accelerating their growth in the digital world. ECommerce platforms use APIs at all customer touchpoints, from displaying products to handling shipping. Owi...

6.9AI score
Exploits0
Veracode
Veracode
added 2022/08/02 11:41 a.m.27 views

Business Logic Flaws

OpenZeppelin Contracts has business logic flaws. The vulnerability exists due to a lack of sanitization between cross chains allowing contracts using Arbitrum L2, CrossChainEnabledArbitrumL2 or LibArbitrumL2 to be classified as direct interactions of externally owned accounts EOAs even though the...

5.3CVSS5.4AI score0.00492EPSS
Exploits0References2Affected Software4
CNNVD
CNNVD
added 2021/12/15 12:0 a.m.45 views

YetiForceCrm 输入验证错误漏洞

YetiForceCrm is an open source crm system from the Polish company YetiForce. Yetiforcecrm suffers from a processing logic error vulnerability, which stems from Yetiforcecrm being vulnerable to business logic errors. No detailed vulnerability details are currently available...

7.7CVSS5.6AI score0.00708EPSS
Exploits1References3
Veracode
Veracode
added 2021/12/12 11:59 a.m.30 views

Business Logic Flaws

qt5-qtwebengine is vulnerable to business logic flaws. The vulnerability exists due to an inappropriate implementation flaw was found in the navigation component of the Chromium browser...

6.5CVSS3.8AI score0.00783EPSS
Exploits0References8Affected Software3
CNVD
CNVD
added 2018/06/13 12:0 a.m.1 views

Multiple vulnerabilities in coremail mailbox system

Coremail mail system is a commercial hyperscale operational-grade mail system. There are reflective cross-site scripting and business logic design vulnerabilities in coremail mail system, which can be exploited by attackers to obtain sensitive information from websites and operate across business...

6.2AI score
Exploits0
Rows per page
Query Builder