CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnerability in RhinOS 3.0-1190 consisting of an XSS through the "search" parameter of /portal/search.htm. This vulnerability could allow a remote attacker to steal details of a victim's user session by submitting a specially crafted URL...

7.1CVSS6.6AI score0.00103EPSS

Exploits0References2

Vulnrichment•added 2024/05/27 12:16 p.m.•12 views

CVE-2024-5408 Cross-site Scripting vulnerability in RhinOS from SaltOS

7.1CVSS6.1AI score0.00103EPSS

Exploits0References2

Vulnrichment•added 2024/05/27 12:13 p.m.•12 views

CVE-2024-5407 Code Injection vulnerability in RhinOS from SaltOS

A vulnerability in RhinOS 3.0-1190 could allow PHP code injection through the "search" parameter in /portal/search.htm. This vulnerability could allow a remote attacker to perform a reverse shell on the remote system, compromising the entire infrastructure...

10CVSS7.4AI score0.01615EPSS

Exploits0References2

OSV•added 2019/03/21 4:0 p.m.•1 views

CVE-2018-18762

SaltOS 3.1 r8126 contains a database download vulnerability...

6.5CVSS5.8AI score

Exploits0References2

NVD•added 2019/03/21 4:0 p.m.•13 views

CVE-2018-18762

SaltOS 3.1 r8126 contains a database download vulnerability...

6.5CVSS6.5AI score0.09943EPSS

Exploits5References2

Prion•added 2019/03/21 4:0 p.m.•10 views

Design/Logic Flaw

SaltOS 3.1 r8126 contains a database download vulnerability...

4.3CVSS6.4AI score0.09943EPSS

Exploits5References2Affected Software1

Cvelist•added 2019/03/17 7:17 p.m.•12 views

CVE-2018-18762

SaltOS 3.1 r8126 contains a database download vulnerability...

6.4AI score0.09943EPSS

Exploits5References2

CVE•added 2019/03/17 7:17 p.m.•49 views

CVE-2018-18762

CVE-2018-18762 affects SaltOS 3.1 r8126 (Erp/Crm). The vulnerability is a database file download issue: an attacker can access the SaltOS database file (saltos.db) via the web path (e.g., /files/saltos.db), as demonstrated by multiple sources (PacketStorm, Exploit-DB). The connected documents als...

6.5CVSS6.4AI score0.09943EPSS

Exploits5References2Affected Software1

CNVD•added 2018/11/20 12:0 a.m.•2 views

SaltOS SQL Injection Vulnerability

SaltOS is a suite of enterprise management solutions from the SaltOS program. The product integrates features such as CRM Customer Relationship Management and ERP Enterprise Resource Planning. A SQL injection vulnerability exists in SaltOS version 3.1 r8126, which can be exploited by remote...

9.8CVSS9.5AI score0.01267EPSS

Exploits5References1

CNVD•added 2018/11/20 12:0 a.m.•1 views

SaltOS SQL Injection Vulnerability (CNVD-2019-00827)

9.8CVSS9.5AI score0.02512EPSS

Exploits5References1

NVD•added 2018/11/16 6:29 p.m.•9 views

CVE-2018-18761

SaltOS 3.1 r8126 allows action=login&querystring=&user=SQL SQL Injection...

9.8CVSS9.7AI score0.01267EPSS

Exploits5References1

OSV•added 2018/11/16 6:29 p.m.•1 views