Lucene search
K

29 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:40 a.m.7 views

CVE-2022-26959

There are two full read/write Blind/Time-based SQL injection vulnerabilities in the Northstar Club Management version 6.3 application. The vulnerabilities exist in the userName parameter of the processlogin.jsp page in the /northstar/Portal/ directory and the userID parameter of the login.jsp pag...

10CVSS8.1AI score0.00774EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-16030

Malware in sbrugna...

7.5CVSS7.5AI score0.01801EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-31503

Malicious code in bioql PyPI...

10CVSS9.2AI score0.00774EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 9:23 p.m.7 views

CVE-2021-29398

Directory traversal in /northstar/Common/NorthFileManager/fileManagerObjects.jsp Northstar Technologies Inc NorthStar Club Management 6.3 allows remote unauthenticated users to browse and list the directories across the entire filesystem of the host of the web application...

5.3CVSS7.2AI score0.01785EPSS
Exploits0References1
NVD
NVD
added 2022/09/16 2:15 a.m.22 views

CVE-2022-26959

There are two full read/write Blind/Time-based SQL injection vulnerabilities in the Northstar Club Management version 6.3 application. The vulnerabilities exist in the userName parameter of the processlogin.jsp page in the /northstar/Portal/ directory and the userID parameter of the login.jsp pag...

10CVSS0.00774EPSS
Exploits1References2
OSV
OSV
added 2022/09/16 2:15 a.m.4 views

CVE-2022-26959

There are two full read/write Blind/Time-based SQL injection vulnerabilities in the Northstar Club Management version 6.3 application. The vulnerabilities exist in the userName parameter of the processlogin.jsp page in the /northstar/Portal/ directory and the userID parameter of the login.jsp pag...

9.8CVSS5.8AI score0.00774EPSS
Exploits1References2
Prion
Prion
added 2022/09/16 2:15 a.m.15 views

Sql injection

There are two full read/write Blind/Time-based SQL injection vulnerabilities in the Northstar Club Management version 6.3 application. The vulnerabilities exist in the userName parameter of the processlogin.jsp page in the /northstar/Portal/ directory and the userID parameter of the login.jsp pag...

7.5CVSS9.9AI score0.00774EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/09/16 1:51 a.m.56 views

CVE-2022-26959

CVE-2022-26959 describes two full Blind/Time-based SQL injection vulnerabilities in Northstar Club Management v6.3. The flaws affect: (1) processlogin.jsp in /northstar/Portal/ via the userName parameter, and (2) login.jsp in /northstar/iphone/ via the userID parameter. Exploitation could grant f...

10CVSS9.9AI score0.00774EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/09/16 1:51 a.m.22 views

CVE-2022-26959

There are two full read/write Blind/Time-based SQL injection vulnerabilities in the Northstar Club Management version 6.3 application. The vulnerabilities exist in the userName parameter of the processlogin.jsp page in the /northstar/Portal/ directory and the userID parameter of the login.jsp pag...

10CVSS10AI score0.00774EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/09/16 12:0 a.m.3 views

Northstar Club Management SQL注入漏洞

Northstar Club Management is a web-based solution from Northstar, Inc. that allows organizations to manage all elements of a club, such as memberships, guests, events, and more. A security vulnerability exists in Northstar Club Management version 6.3. An attacker exploiting the vulnerability coul...

10CVSS8.4AI score0.00774EPSS
Exploits1References3
CNVD
CNVD
added 2022/02/21 12:0 a.m.10 views

Northstar Club Management Operating System Command Injection Vulnerability

Northstar Club Management is a web-based solution from Northstar, Inc. that allows organizations to manage all elements of a club, such as memberships, guests, events, and more. An operating system command injection vulnerability exists in Northstar Club Management version 6.3, which stems from a...

10CVSS7.6AI score0.03573EPSS
Exploits0References1
OSV
OSV
added 2022/02/04 7:15 p.m.3 views

CVE-2021-29395

Directory travesal in /northstar/filemanager/download.jsp in Northstar Technologies Inc NorthStar Club Management 6.3 allows remote unauthenticated users to download arbitrary files, including JSP source code, across the filesystem of the host of the web application...

7.5CVSS5.9AI score0.01801EPSS
Exploits0References2
OSV
OSV
added 2022/02/04 7:15 p.m.6 views

CVE-2021-29393

Remote Code Execution in cominput.jsp and comoutput.jsp in Northstar Technologies Inc NorthStar Club Management 6.3 allows remote unauthenticated users to inject and execute arbitrary system commands via the unsanitized user-controlled "command" and "commandvalues" parameters...

9.8CVSS7.6AI score0.03573EPSS
Exploits0References2
OSV
OSV
added 2022/02/04 7:15 p.m.2 views

CVE-2021-29397

Cleartext Transmission of Sensitive Information in /northstar/Admin/login.jsp in Northstar Technologies Inc NorthStar Club Management 6.3 allows remote local user to intercept users credentials transmitted in cleartext over HTTP...

7.5CVSS5.8AI score0.00813EPSS
Exploits0References2
NVD
NVD
added 2022/02/04 7:15 p.m.15 views

CVE-2021-29397

Cleartext Transmission of Sensitive Information in /northstar/Admin/login.jsp in Northstar Technologies Inc NorthStar Club Management 6.3 allows remote local user to intercept users credentials transmitted in cleartext over HTTP...

7.5CVSS0.00813EPSS
Exploits0References2
Prion
Prion
added 2022/02/04 7:15 p.m.15 views

Directory traversal

Directory travesal in /northstar/filemanager/download.jsp in Northstar Technologies Inc NorthStar Club Management 6.3 allows remote unauthenticated users to download arbitrary files, including JSP source code, across the filesystem of the host of the web application...

5CVSS7.6AI score0.01801EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/02/04 6:55 p.m.24 views

CVE-2021-29398

Directory traversal in /northstar/Common/NorthFileManager/fileManagerObjects.jsp Northstar Technologies Inc NorthStar Club Management 6.3 allows remote unauthenticated users to browse and list the directories across the entire filesystem of the host of the web application...

5.7AI score0.01785EPSS
Exploits0References2
CVE
CVE
added 2022/02/04 6:55 p.m.54 views

CVE-2021-29398

CVE-2021-29398 affects Northstar Club Management 6.3. A directory-traversal flaw exists in /northstar/Common/NorthFileManager/fileManagerObjects.jsp that permits remote unauthenticated users to browse/list directories across the host filesystem. The root cause is insufficient authentication/permi...

5.3CVSS5.4AI score0.01785EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/02/04 6:52 p.m.51 views

CVE-2021-29397

CVE-2021-29397 affects Northstar Technologies Inc. NorthStar Club Management version 6.3. The vulnerability is a cleartext transmission issue in the login page at /northstar/Admin/login.jsp, allowing a remote observer to intercept credentials transmitted over HTTP. The connected documents confirm...

7.5CVSS7.4AI score0.00813EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/02/04 6:50 p.m.57 views

CVE-2021-29396

CVE-2021-29396 concerns NorthStar Club Management 6.3 from Northstar Technologies Inc, described as a systemic insecure-permissions issue that allows remote unauthenticated users to access and use various functionalities without authentication. The CVE entry notes exposure at network level with h...

9.8CVSS9.3AI score0.0167EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder