CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Talya Informatics Travel APPS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Travel APPS: before v17.0.68...

4.6CVSS5.9AI score0.0006EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 5:28 a.m.•5 views

CVE-2024-1107

Authorization Bypass Through User-Controlled Key vulnerability in Talya Informatics Travel APPS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Travel APPS: before v17.0.68...

9.8CVSS5.8AI score0.00026EPSS

Exploits0References1

NVD•added 2024/06/27 2:15 p.m.•13 views

CVE-2024-1153

4.6CVSS0.0006EPSS

Exploits0References2

NVD•added 2024/06/27 1:15 p.m.•15 views

CVE-2024-1107

9.8CVSS0.00026EPSS

Exploits0References2

ATTACKERKB•added 2024/06/27 1:15 p.m.•4 views

CVE-2024-1107

9.8CVSS5.8AI score0.00026EPSS

Exploits0References3

Cvelist•added 2024/06/27 1:9 p.m.•17 views

CVE-2024-1153 SQL Injection Vulnerability in Talya Informatics' Travel APPS

4.6CVSS0.0006EPSS

Exploits0References2

Vulnrichment•added 2024/06/27 1:9 p.m.•12 views

CVE-2024-1153 SQL Injection Vulnerability in Talya Informatics' Travel APPS

4.6CVSS5.9AI score0.0006EPSS

Exploits0References2

CVE•added 2024/06/27 1:9 p.m.•62 views

CVE-2024-1153

CVE-2024-1153 concerns an SQL injection vulnerability in Talya Informatics’ Travel APPS, affecting versions prior to 17.0.68. The connected sources corroborate that the issue stems from improper access control/security level configuration, enabling injection-related impacts in Travel APPS before ...

4.6CVSS5.9AI score0.0006EPSS

Exploits0References2Affected Software1

CVE•added 2024/06/27 1:1 p.m.•62 views

CVE-2024-1107

CVE-2024-1107 affects Talya Informatics Travel APPS prior to v17.0.68. The root cause is an Authorization Bypass Through User-Controlled Key due to misconfigured access control levels, leading to a high-impact breach (CVE base score 9.8). Public sources (NVD/Red Hat/CNNVD/PT-Security/CVE lists) c...

9.8CVSS5.8AI score0.00026EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2024/06/27 1:1 p.m.•21 views

CVE-2024-1107 IDOR in Talya Informatics' Travel APPS

9.8CVSS5.8AI score0.00026EPSS

Exploits0References2

Cvelist•added 2024/06/27 1:1 p.m.•21 views

CVE-2024-1107 IDOR in Talya Informatics' Travel APPS

9.8CVSS0.00026EPSS

Exploits0References2

Vulnrichment•added 2024/06/27 9:36 a.m.•6 views

CVE-2024-0949 Improper Access Control in Talya Informatics' Elektraweb

Missing Authentication, Files or Directories Accessible to External Parties, Use of Hard-coded Credentials vulnerability in Talya Informatics Elektraweb allows Authentication Bypass. This issue affects Elektraweb: before v17.0.68...

9.8CVSS5.8AI score0.00027EPSS

Exploits0References2

Cvelist•added 2024/06/27 9:36 a.m.•18 views

CVE-2024-0949 Improper Access Control in Talya Informatics' Elektraweb

9.8CVSS0.00027EPSS

Exploits0References2

Vulnrichment•added 2024/06/27 9:27 a.m.•22 views

CVE-2024-0947 Cookies Manipulation in Talya Informatics' Elektraweb

Reliance on Cookies without Validation and Integrity Checking vulnerability in Talya Informatics Elektraweb allows Session Credential Falsification through Manipulation, Accessing/Intercepting/Modifying HTTP Cookies, Manipulating Opaque Client-based Data Tokens. This issue affects Elektraweb:...

9.8CVSS5.8AI score0.00133EPSS

Exploits0References2

Cvelist•added 2024/06/27 9:27 a.m.•16 views

CVE-2024-0947 Cookies Manipulation in Talya Informatics' Elektraweb

9.8CVSS0.00133EPSS

Exploits0References2

Positive Technologies•added 2024/06/27 12:0 a.m.•2 views

PT-2024-16735 · Talya Informatics · Talya Informatics Travel Apps

Name of the Vulnerable Software and Affected Versions: Talya Informatics Travel APPS versions prior to 17.0.68 Description: The issue is related to an Authorization Bypass Through User-Controlled Key vulnerability, which allows exploiting incorrectly configured access control security levels...

9.8CVSS7.2AI score0.00026EPSS

Exploits0References3

CNNVD•added 2024/06/27 12:0 a.m.•0 views

Talya Informatics Travel APPS Security Breach

Talya Informatics Travel APPS is a travel software from the Turkish company Talya Informatics. A security vulnerability exists in Talya Informatics Travel APPS prior to version v17.0.68, which stems from a vulnerability that allows an attacker to bypass user control key authorization using...

9.8CVSS6.7AI score0.00026EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by