61 matches found
EUVD-2024-50743
Malicious code in bioql PyPI...
EUVD-2023-43758
Malicious code in bioql PyPI...
EUVD-2023-43756
Malicious code in bioql PyPI...
EUVD-2023-43724
Malicious code in bioql PyPI...
EUVD-2023-43757
Malicious code in bioql PyPI...
EUVD-2025-27715
Malicious code in bioql PyPI...
EUVD-2023-43725
Malicious code in bioql PyPI...
CVE-2025-2407
Missing Authentication & Authorization in Web-API in Mobatime AMX MTAPI v6 on IIS allows adversaries to unrestricted access via the network. The vulnerability is fixed in Version 1.5...
CVE-2025-2407
Missing Authentication & Authorization in Web-API in Mobatime AMX MTAPI v6 on IIS allows adversaries to unrestricted access via the network. The vulnerability is fixed in Version 1.5...
CVE-2025-2407
CVE-2025-2407 affects Mobatime AMX MTAPI v6 Web-API on IIS. The issue is Missing Authentication & Authorization, allowing unauthenticated network access to the Web-API. Root cause: lack of access controls in the Web-API enables adversaries to reach functionality that should require authentication...
CVE-2025-2407 Missing Authentication & Authorization in Web-API allows adversary unrestricted access
Missing Authentication & Authorization in Web-API in Mobatime AMX MTAPI v6 on IIS allows adversaries to unrestricted access via the network. The vulnerability is fixed in Version 1.5...
CVE-2025-2407 Missing Authentication & Authorization in Web-API allows adversary unrestricted access
Missing Authentication & Authorization in Web-API in Mobatime AMX MTAPI v6 on IIS allows adversaries to unrestricted access via the network. The vulnerability is fixed in Version 1.5...
Mobatime AMX MTAPI 安全漏洞
Mobatime AMX MTAPI is a time recording and access control system from Mobatime, Inc. A security vulnerability exists in Mobatime AMX MTAPI version v6, which stems from a lack of authentication and authorization in the Web-API and could lead to unrestricted access to the network...
PT-2025-22972 · Mobatime · Mobatime Amx Mtapi
Name of the Vulnerable Software and Affected Versions: Mobatime AMX MTAPI v6 versions prior to 1.5 Description: The issue concerns Missing Authentication & Authorization in the Web-API of Mobatime AMX MTAPI v6 on IIS, allowing adversaries to gain unrestricted access via the network...
CVE-2023-3065
Improper Authentication vulnerability in Mobatime mobile application AMXGT100 allows Authentication Bypass.This issue affects Mobatime mobile application AMXGT100 through 1.3.20...
CVE-2023-3066
Incorrect Authorization vulnerability in Mobatime mobile application AMXGT100 allows a low-privileged user to impersonate anyone else, including administratorsThis issue affects Mobatime mobile application AMXGT100: through 1.3.20...
CVE-2023-3064
Anonymous user may get the list of existing users managed by the application, that could ease further attacks see CVE-2023-3065 and 3066This issue affects Mobatime mobile application AMXGT100 through 1.3.20...
CVE-2023-3032
Unrestricted Upload of File with Dangerous Type vulnerability in Mobatime web application Documentary proof upload modules allows a malicious user to Upload a Web Shell to a Web Server.This issue affects Mobatime web application: through 06.7.22...
CVE-2023-3033
Incorrect Authorization vulnerability in Mobatime web application allows Privilege Escalation, Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mobatime web application: through 06.7.22...
CVE-2024-12286
MOBATIME Network Master Clock - DTS 4801 allows attackers to use SSH to gain initial access using default credentials...