52 matches found
EUVD-2026-28952
A vulnerability was identified in Industrial Application Software IAS Canias ERP 8.03. This issue affects the function iasServerRemoteInterface.doAction of the component Java RMI Session Management. Such manipulation leads to improper authentication. The attack can be launched remotely. The vendo...
Canias ERP 授权问题漏洞
Canias ERP is a comprehensive management system developed by the Swiss company Canias, covering enterprise resource planning and business process management. Version 8.03 of Canias ERP contains an authorization vulnerability; this vulnerability stems from the function...
CVE-2020-23620
The Java Remote Management Interface of all versions of Orlansoft ERP was discovered to contain a vulnerability due to insecure deserialization of user-supplied content, which can allow attackers to execute arbitrary code via a crafted serialized Java object...
CVE-2025-20354
A vulnerability in the Java Remote Method Invocation RMI process of Cisco Unified CCX could allow an unauthenticated, remote attacker to upload arbitrary files and execute arbitrary commands with root permissions on an affected system. This vulnerability is due to improper authentication mechanis...
CVE-2025-20354
A vulnerability in the Java Remote Method Invocation RMI process of Cisco Unified CCX could allow an unauthenticated, remote attacker to upload arbitrary files and execute arbitrary commands with root permissions on an affected system. This vulnerability is due to improper authentication mechanis...
CVE-2025-20354 Cisco Unified Contact Center Express Remote Code Execution Vulnerability
A vulnerability in the Java Remote Method Invocation RMI process of Cisco Unified CCX could allow an unauthenticated, remote attacker to upload arbitrary files and execute arbitrary commands with root permissions on an affected system. This vulnerability is due to improper authentication mechanis...
EUVD-2010-0862
Malware in sbrugna...
EUVD-2020-24551
Malware in sbrugna...
EUVD-2010-3557
Malware in sbrugna...
EUVD-2018-2683
Malware in sbrugna...
EUVD-2025-12352
Malicious code in bioql PyPI...
EUVD-2023-23885
Malicious code in bioql PyPI...
EUVD-2025-26702
Malicious code in bioql PyPI...
Progress OpenEdge 12.2.x < 12.2.18 / 12.8.x < 12.8.9 RCE (000288507)
The version of Progress OpenEdge installed on the remote host is 12.2.x prior to 12.2.18, or 12.8.x prior to 12.8.9. It is, therefore, affected by a remote code execution vulnerability as referenced in the 000288507 advisory. - It was possible to perform Remote Command Execution RCE via Java RMI...
PT-2025-37182
Name of the Vulnerable Software and Affected Versions: SEAT Queue Ticket Kiosk versions up to 20250827 Description: A flaw exists in the Java RMI Registry Handler component of SEAT Queue Ticket Kiosk. This issue allows for deserialization, and can only be exploited within a local network. The...
CVE-2025-7388
It was possible to perform Remote Command Execution RCE via Java RMI interface in the OpenEdge AdminServer, allowing authenticated users to inject and execute OS commands under the delegated authority of the AdminServer process. An RMI interface permitted manipulation of a configuration property...
CVE-2025-8814
A vulnerability was found in atjiu pybbs up to 6.0.0 and classified as problematic. This issue affects the function setCookie of the file src/main/java/co/yiiu/pybbs/util/CookieUtil.java. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has...
CVE-2020-23621
The Java Remote Management Interface of all versions of SVI MS Management System was discovered to contain a vulnerability due to insecure deserialization of user-supplied content, which can allow attackers to execute arbitrary code via a crafted serialized Java object...
PT-2025-20605 · Unknown · Jadmin-Java
Name of the Vulnerable Software and Affected Versions: JAdmin-JAVA JAdmin version 1.0 Description: A vulnerability has been found in JAdmin-JAVA, affecting an unknown functionality of the file "/memoAjax/save". The manipulation of the ID argument leads to cross-site scripting. The attack can be...
CVE-2025-3842
The CVE-2025-3842 entry concerns panhainan DS-Java 1.0, specifically the function uploadUserPic.action in FileUpload.java. The issue arises from manipulation of the fileUpload argument, leading to code injection. The vulnerability is described as exploitable remotely, with public disclosures of t...