CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

CNNVD•added 2025/04/26 12:0 a.m.•1 views

Serosoft Solutions Academia Student Information System EagleR 安全漏洞

Serosoft Solutions Academia Student Information System EagleR is a student information system from Serosoft Solutions, India. A security vulnerability exists in Serosoft Solutions Academia Student Information System EagleR version 1.0.118, which stems from improper manipulation of the file path...

6.4CVSS6.4AI score0.01443EPSS

Exploits1References3

Positive Technologies•added 2025/04/26 12:0 a.m.•2 views

PT-2025-17959

Name of the Vulnerable Software and Affected Versions Serosoft Academia Student Information System SIS EagleR version 1.0.118 Description An arbitrary file upload vulnerability via writefile.php allows attackers to execute arbitrary code via ../ in the filePath parameter. This issue enables...

9.8CVSS6.2AI score0.01443EPSS

Exploits1References8

OSV•added 2025/03/03 1:15 a.m.•0 views

CVE-2025-27584

A stored cross-site scripting XSS vulnerability in Serosoft Solutions Pvt Ltd Academia Student Information System SIS EagleR v1.0.118 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the First Name parameter at /rest/staffResource/update...

5.4CVSS5.9AI score0.00105EPSS

Exploits0References1

OSV•added 2025/03/03 1:15 a.m.•2 views

CVE-2025-25950

Incorrect access control in the component /rest/staffResource/update of Serosoft Solutions Pvt Ltd Academia Student Information System SIS EagleR v1.0.118 allows create and modify user accounts, including an Administrator account...

8.1CVSS5.7AI score0.00126EPSS

Exploits0References3

CNNVD•added 2025/03/03 12:0 a.m.•2 views

Serosoft Solutions Academia Student Information System EagleR 安全漏洞

Serosoft Solutions Academia Student Information System EagleR is a student information system from Serosoft Solutions, India. A security vulnerability exists in Serosoft Solutions Academia Student Information System EagleR v1.0.118, which stems from an insecure direct object reference in the...

6.5CVSS6.3AI score0.00078EPSS

Exploits0References2

Positive Technologies•added 2025/03/03 12:0 a.m.•3 views

PT-2025-9242

Name of the Vulnerable Software and Affected Versions Serosoft Solutions Pvt Ltd Academia Student Information System SIS EagleR version 1.0.118 Description The issue is related to an Insecure Direct Object References IDOR in the component "/getStudemtAllDetailsById?studentId=XX". This allows...

6.5CVSS6.3AI score0.00078EPSS

Exploits0References8

CNNVD•added 2025/03/03 12:0 a.m.•3 views

Serosoft Solutions Academia Student Information System EagleR 安全漏洞

Serosoft Solutions Academia Student Information System EagleR is a student information system from Serosoft Solutions, India. A security vulnerability exists in Serosoft Solutions Academia Student Information System EagleR v1.0.118, which stems from improper access control and allows the creation...

9.1CVSS6.2AI score0.00079EPSS

Exploits0References2

CNNVD•added 2025/03/03 12:0 a.m.•4 views

Serosoft Solutions Academia Student Information System EagleR 安全漏洞

Serosoft Solutions Academia Student Information System EagleR is a student information system from Serosoft Solutions, India. A security vulnerability exists in Serosoft Solutions Academia Student Information System EagleR v1.0.118, which originates in the /rest/cb/executeBasicSearch component...

7.5CVSS6.3AI score0.00183EPSS

Exploits0References2

CNNVD•added 2025/03/03 12:0 a.m.•3 views

Serosoft Solutions Academia Student Information System EagleR 跨站脚本漏洞

Serosoft Solutions Academia Student Information System EagleR is a student information system from Serosoft Solutions, India. A security vulnerability exists in Serosoft Solutions Academia Student Information System EagleR v1.0.118, which stems from a stored cross-site scripting vulnerability in...

5.4CVSS5.9AI score0.00105EPSS

Exploits0References2

CNNVD•added 2025/03/03 12:0 a.m.•3 views

Serosoft Solutions Academia Student Information System EagleR 跨站脚本漏洞

Serosoft Solutions Academia Student Information System EagleR is a student information system from Serosoft Solutions, India. A security vulnerability exists in Serosoft Solutions Academia Student Information System EagleR v1.0.118, which originates from stored cross-site scripting in the User ID...

5.4CVSS5.6AI score0.00175EPSS

Exploits1References2

CNNVD•added 2025/03/03 12:0 a.m.•3 views

Serosoft Solutions Academia Student Information System EagleR 跨站脚本漏洞

Serosoft Solutions Academia Student Information System EagleR is a student information system from Serosoft Solutions, India. A security vulnerability exists in Serosoft Solutions Academia Student Information System EagleR v1.0.118, which stems from a stored cross-site scripting vulnerability in...

5.4CVSS5.9AI score0.00105EPSS

Exploits0References2

Positive Technologies•added 2025/03/03 12:0 a.m.•2 views

PT-2025-9587

6.4AI score

Exploits0References2

Positive Technologies•added 2025/03/03 12:0 a.m.•3 views

PT-2025-9586

Name of the Vulnerable Software and Affected Versions Serosoft Solutions Pvt Ltd Academia Student Information System SIS EagleR version 1.0.118 Description An information disclosure issue in the /rest/cb/executeBasicSearch component allows attackers to access sensitive user information...

6AI score

Exploits0References2

OSV•added 2019/09/10 5:15 p.m.•1 views

CVE-2019-0364

Attackers may misuse an HTTP/REST endpoint of SAP HANA Extended Application Services Advanced model, before version 1.0.118, to enumerate open ports...

4.3CVSS5.8AI score0.00197EPSS

Exploits0References2

OSV•added 2019/09/10 5:15 p.m.•1 views

CVE-2019-0363

Attackers may misuse an HTTP/REST endpoint of SAP HANA Extended Application Services Advanced model, before version 1.0.118, to overload the server or retrieve information about internal network ports...

7.1CVSS5.8AI score0.00371EPSS

Exploits0References2

Cvelist•added 2010/08/02 8:0 p.m.•14 views

CVE-2010-2930

Multiple stack-based buffer overflows in hsolinkcontrol in hsolink 1.0.118 allow local users to gain privileges via long command-line arguments, a different vulnerability than CVE-2010-1671. NOTE: some of these details are obtained from third party information...

6.4AI score0.00048EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by