Lucene search
K

34 matches found

Cvelist
Cvelist
added 2023/12/28 9:26 a.m.33 views

CVE-2023-4671 SQLi in Talent Soft's ECOP

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Talent Software ECOP allows Command Line Execution through SQL Injection. This issue affects ECOP: before 32255...

9.8CVSS10AI score0.00646EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/12/28 12:0 a.m.4 views

PT-2023-30168

Name of the Vulnerable Software and Affected Versions Talent Software ECOP versions prior to 32255 Description The issue is related to an Improper Neutralization of Special Elements used in an SQL Command, also known as 'SQL Injection', which allows Command Line Execution through SQL Injection...

9.8CVSS7.5AI score0.00646EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2023/12/28 12:0 a.m.10 views

PT-2023-30169

Name of the Vulnerable Software and Affected Versions Talent Software ECOP versions prior to 32255 Description The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS. This means that an attacker can injec...

6.1CVSS6.4AI score0.00312EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/12/28 12:0 a.m.6 views

Talent Software ECOP Cross-Site Scripting Vulnerability

Talent Software ECOP is a content distribution platform from Talent Software. A cross-site scripting vulnerability exists in Talent Software ECOP versions prior to 32255, which arises from improper neutralization of inputs during web page generation, resulting in cross-site scripting...

6.1CVSS5.8AI score0.00312EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/12/28 12:0 a.m.4 views

Talent Software ECOP SQL Injection Vulnerability

Talent Software ECOP is a content distribution platform from Talent Software. A SQL injection vulnerability exists in Talent Software ECOP versions prior to 32255 that stems from improper neutralization of special elements used in SQL commands, resulting in SQL injection...

9.8CVSS7.9AI score0.00646EPSS
Exploits0References2
NVD
NVD
added 2023/03/15 12:15 p.m.16 views

CVE-2023-0322

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Talent Software UNIS allows Reflected XSS. This issue affects UNIS: before 28376...

6.1CVSS6.3AI score0.00372EPSS
Exploits0References2
OSV
OSV
added 2023/03/15 12:15 p.m.2 views

CVE-2023-0322

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Talent Software UNIS allows Reflected XSS.This issue affects UNIS: before 28376...

6.1CVSS6.4AI score0.00372EPSS
Exploits0References1
Prion
Prion
added 2023/03/15 12:15 p.m.16 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Talent Software UNIS allows Reflected XSS.This issue affects UNIS: before 28376...

5.8CVSS6.3AI score0.00372EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/03/15 11:15 a.m.20 views

CVE-2023-0322 XSS in Talent Software UNIS

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Talent Software UNIS allows Reflected XSS. This issue affects UNIS: before 28376...

6.1CVSS6.5AI score0.00372EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/03/15 11:15 a.m.7 views

CVE-2023-0322 XSS in Talent Software UNIS

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Talent Software UNIS allows Reflected XSS. This issue affects UNIS: before 28376...

6.1CVSS6.4AI score0.00372EPSS
Exploits0References2
CVE
CVE
added 2023/03/15 11:15 a.m.49 views

CVE-2023-0322

CVE-2023-0322 describes a Reflected Cross-Site Scripting vulnerability in Talent Software UNIS prior to version 28376, caused by improper neutralization of input during web page generation. Affected product: Talent Software UNIS. Impact: potential to inject script via user-supplied input, with ne...

6.1CVSS6.4AI score0.00372EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/03/15 12:0 a.m.3 views

PT-2023-16176 · Talent · Talent Software Unis

Name of the Vulnerable Software and Affected Versions: Talent Software UNIS versions prior to 28376 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS. This can be exploited by injecting...

6.1CVSS6.4AI score0.00372EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/03/15 12:0 a.m.3 views

Talent Software UNIS 跨站脚本漏洞

Talent Software UNIS is an automated system from Talent Software that records and monitors all activities performed by university academic staff and analyzes academic performance by academic staff and units. A security vulnerability exists in Talent Software UNIS prior to version 28376 that stems...

6.1CVSS6.2AI score0.00372EPSS
Exploits0References2
CNVD
CNVD
added 2017/10/12 12:0 a.m.4 views

Jiangxi Talent Software Technology Co., Ltd. enterprise station building system with SQL injection vulnerability

Jiangxi Talent Software Technology Co., Ltd. enterprise station-building system is a station-building system. Jiangxi Talent Software Technology Co., Ltd. enterprise station building system SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive information in the...

7.6AI score
Exploits0
Rows per page
Query Builder