Lucene search
K

6 matches found

NVD
NVD
added 2023/12/29 6:15 a.m.21 views

CVE-2023-31295

CSV Injection vulnerability in Sesami Cash Point & Transport Optimizer CPTO version 6.3.8.6 718, allows remote attackers to obtain sensitive information via the User Profile field...

7.5CVSS0.00579EPSS
Exploits0References1
NVD
NVD
added 2023/12/29 2:15 a.m.17 views

CVE-2023-31292

An issue was discovered in Sesami Cash Point & Transport Optimizer CPTO 6.3.8.6 718, allows local attackers to obtain sensitive information and bypass authentication via "Back Button Refresh" attack...

5.5CVSS0.00172EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/12/29 12:0 a.m.5 views

Sesami Cash Point & Transport Optimizer Security Vulnerability

Sesami Cash Point & Transport Optimizer is a solution from Sesami, Inc. A security vulnerability exists in Sesami Cash Point & Transport Optimizer CPTO version 6.3.8.6 that stems from the presence of a cross-site scripting vulnerability. The vulnerability allows remote attackers to execute...

4.8CVSS6.8AI score0.00436EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/12/29 12:0 a.m.12 views

CVE-2023-31298

Cross Site Scripting XSS vulnerability in Sesami Cash Point & Transport Optimizer CPTO version 6.3.8.6 718, allows remote attackers to execute arbitrary code and obtain sensitive information via the User ID field when creating a new system user...

6.5AI score0.00436EPSS
Exploits0References1
CVE
CVE
added 2023/12/29 12:0 a.m.51 views

CVE-2023-31296

Affected software/product: Sesami CPTO (Cash Point & Transport Optimizer) — version 6.3.8.6 (#718). Vulnerability type / vector: CSV Injection via the User Name field. Root cause / impact: The issue enables an attacker to obtain sensitive information; documentation notes a CSV injection risk with...

5.3CVSS5.2AI score0.00376EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/29 12:0 a.m.8 views

CVE-2023-31302

Cross Site Scripting XSS vulnerability in Sesami Cash Point & Transport Optimizer CPTO 6.3.8.6 718, allows remote attackers to execute arbitrary code via the Teller field...

6.5AI score0.00455EPSS
Exploits0References1
Rows per page
Query Builder