Lucene search
K

12 matches found

NVD
NVD
added 2026/03/25 2:16 p.m.6 views

CVE-2025-40841

Ericsson Indoor Connect 8855 versions prior to 2025.Q3 contains a Cross-Site Request Forgery CSRF vulnerability which, if exploited, can lead to unauthorized modification of certain information...

5.1CVSS0.00096EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/09 12:0 a.m.8 views

PT-2025-41349

Name of the Vulnerable Software and Affected Versions Versions prior to 2025-47342 Description A temporary denial-of-service condition might happen when multiple profiles are used at the same time with QHS enabled. Recommendations At the moment, there is no information about a newer version that...

7.1CVSS6.4AI score0.00154EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/09/17 11:17 a.m.9 views

CVE-2025-8411 XSS in Dokuzsoft Technology's E-Commerce Web Design Product

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Dokuzsoft Technology E-Commerce Web Design Product allows XSS Through HTTP Headers. This issue affects E-Commerce Web Design Product: before 11.08.2025...

7.1CVSS5.4AI score0.00185EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.7 views

PT-2025-33131 · Webview · Webview

Name of the Vulnerable Software and Affected Versions: versions prior to 2025-27388 Description: Loading arbitrary external URLs through WebView components introduces malicious JavaScript JS code that can steal arbitrary user tokens. Recommendations: At the moment, there is no information about a...

8.3CVSS6.4AI score0.00359EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/07/22 12:0 a.m.5 views

Arm Development Studio 代码问题漏洞

Arm Development Studio is a software development tool designed for the Arm architecture from Arm UK. A code issue vulnerability exists in versions prior to Arm Development Studio 2025 that stems from an uncontrolled search path element that could lead to a DLL hijacking attack...

5.9CVSS6.8AI score0.00155EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/10 12:0 a.m.3 views

Salesforce OmniStudio 安全漏洞

Salesforce OmniStudio is a digitization platform from US-based Salesforce, Inc. A security vulnerability exists in versions of Salesforce OmniStudio prior to 2025, which stems from an improper privilege retention issue that could lead to the disclosure of encrypted data...

7.5CVSS9AI score0.00392EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/10 12:0 a.m.2 views

Salesforce OmniStudio 安全漏洞

Salesforce OmniStudio is a digitization platform from US-based Salesforce, Inc. A security vulnerability exists in Salesforce OmniStudio versions prior to 2025 that stems from an improper privilege retention issue that could lead to field-level security control bypass...

9.1CVSS9.1AI score0.00442EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/02/27 12:0 a.m.3 views

PT-2025-8947 · Unknown · Yukseloglu Filter B2B Login Platform

Name of the Vulnerable Software and Affected Versions: Yukseloglu Filter B2B Login Platform versions prior to 16.01.2025 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection...

9.8CVSS8.2AI score0.00377EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2025/02/12 3:15 p.m.6 views

CVE-2024-12251

In Progress Telerik UI for WinUI versions prior to 2025 Q1 3.0.0, a command injection attack is possible through improper neutralization of hyperlink elements...

7.8CVSS5.8AI score0.00548EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.5 views

Progress Telerik Document Processing Libraries 路径遍历漏洞

Progress Telerik Document Processing Libraries is a document processing library from Progress USA. A path traversal vulnerability exists in Progress Telerik Document Processing Libraries prior to version 2025 Q1, which stems from the fact that an unzip archive operation could lead to arbitrary fi...

8.8CVSS6.8AI score0.0062EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.3 views

PT-2025-3559 · Msfm · Msfm

Name of the Vulnerable Software and Affected Versions: MSFM versions prior to 2025.01.01 Description: The issue is related to a SQL injection vulnerability via the s name parameter at the "table/list" endpoint. This vulnerability allows for potential exploitation. No information is provided about...

7.5CVSS7.5AI score0.00432EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2024/08/21 12:0 a.m.7 views

PT-2024-27240 · Autodesk · Autodesk Revit

Name of the Vulnerable Software and Affected Versions: Autodesk Revit versions prior to 2025 Description: A maliciously crafted DWG file, when parsed in Revit, can force a stack-based buffer overflow. This allows a malicious actor to execute arbitrary code in the context of the current process...

7.8CVSS8.3AI score0.00235EPSS
Exploits0References10
Rows per page
Query Builder