CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-19704

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00311EPSS

Exploits1References3

RedhatCVE•added 2025/05/23 9:35 a.m.•4 views

CVE-2024-22108

An issue was discovered in GTB Central Console 15.17.1-30814.NG. The method setTermsHashAction at /opt/webapp/lib/PureApi/CCApi.class.php is vulnerable to an unauthenticated SQL injection via /ccapi.php that an attacker can abuse in order to change the Administrator password to a known value...

9.8CVSS9.9AI score0.00311EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 9:34 a.m.•3 views

CVE-2024-22107

An issue was discovered in GTB Central Console 15.17.1-30814.NG. The method systemSettingsDnsDataAction at /opt/webapp/src/AppBundle/Controller/React/SystemSettingsController.php is vulnerable to command injection via the /old/react/v1/api/system/dns/data endpoint. An authenticated attacker can...

7.2CVSS7.2AI score0.01753EPSS

Exploits1References1

NVD•added 2024/02/02 4:15 p.m.•6 views

CVE-2024-22108

9.8CVSS9.9AI score0.00311EPSS

Exploits1References2

OSV•added 2024/02/02 4:15 p.m.•2 views

CVE-2024-22108

9.8CVSS5.8AI score0.00311EPSS

Exploits1References2

OSV•added 2024/02/02 4:15 p.m.•2 views

CVE-2024-22107

7.2CVSS5.9AI score0.01753EPSS

Exploits1References2

Prion•added 2024/02/02 4:15 p.m.•13 views

Sql injection

7.5CVSS8.4AI score0.00311EPSS

Exploits1References2Affected Software1

Prion•added 2024/02/02 4:15 p.m.•14 views

Command injection

5.8CVSS7.5AI score0.01753EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2024/02/02 12:0 a.m.•4 views

CVE-2024-22107

7.2AI score0.01753EPSS

Exploits1References2

CVE•added 2024/02/02 12:0 a.m.•73 views

CVE-2024-22107

GTB Central Console 15.17.1-30814.NG is affected by a command-injection vulnerability in the systemSettingsDnsDataAction method of SystemSettingsController.php, exploitable via the /old/react/v1/api/system/dns/data endpoint. An authenticated attacker can inject arbitrary commands to compromise th...

7.2CVSS7.2AI score0.01753EPSS

Exploits1References2Affected Software1

Cvelist•added 2024/02/02 12:0 a.m.•13 views

CVE-2024-22108

10AI score0.00311EPSS

Exploits1References2

Vulnrichment•added 2024/02/02 12:0 a.m.•9 views

CVE-2024-22108

8.1AI score0.00311EPSS

Exploits1References2

CVE•added 2024/02/02 12:0 a.m.•45 views

CVE-2024-22108

Summary: GTB Central Console 15.17.1-30814.NG is affected by an unauthenticated SQL injection in the function setTermsHashAction (PureApi/CCApi.class.php) reachable via /ccapi.php. This can allow an attacker to change the Administrator password to a known value. Impact: cryptographic and admin cr...

9.8CVSS9.8AI score0.00311EPSS

Exploits1References2Affected Software1

CNNVD•added 2024/02/02 12:0 a.m.•2 views

GTB Central Console Security Vulnerability

GTB Technologies GTB Central Console is a security solution component or tool from GTB Technologies. A security vulnerability exists in GTB Central Console version 15.17.1-30814.NG. An attacker can exploit this vulnerability to inject arbitrary commands and compromise the platform...

7.2CVSS7AI score0.01753EPSS

Exploits1References3

Positive Technologies•added 2024/01/24 12:0 a.m.•3 views

PT-2024-2067 · Unknown · Gtb Central Console

Name of the Vulnerable Software and Affected Versions: GTB Central Console version 15.17.1-30814.NG Description: An issue was discovered in the GTB Central Console, where the method systemSettingsDnsDataAction at /opt/webapp/src/AppBundle/Controller/React/SystemSettingsController.php is vulnerabl...

9.8CVSS7.6AI score0.01753EPSS

Exploits2References19

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by