2 matches found
CVE-2025-65236
OpenCode Systems USSD Gateway OC Release: 5 was discovered to contain a SQL injection vulnerability via the Session ID parameter in the /occontrolpanel/index.php endpoint...
PT-2025-3120 · Opencode · Opencode Mobile Collect Call
Name of the Vulnerable Software and Affected Versions: Opencode Mobile Collect Call version 5.4.7 Description: The issue allows attackers to execute arbitrary web scripts or HTML, potentially leading to Remote Code Execution RCE and cross-site scripting XSS. This can be achieved by injecting a...