Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2026/01/04 12:0 a.m.7 views

PT-2026-1188

Name of the Vulnerable Software and Affected Versions CRMEB versions up to 5.6.1 Description A flaw exists in CRMEB that could allow for remote code execution. The issue stems from a SQL injection vulnerability within the /adminapi/export/product list file. Specifically, manipulating the cate id...

5.8CVSS8.4AI score0.00329EPSS
Exploits1References9
Cvelist
Cvelist
added 2025/10/05 11:32 a.m.10 views

CVE-2025-11290 CRMEB JWT HMAC Secret hard-coded key

A vulnerability was identified in CRMEB up to 5.6.1. This affects an unknown function of the component JWT HMAC Secret Handler. Such manipulation of the argument secret with the input default leads to use of hard-coded cryptographic key . It is possible to launch the attack remotely. Attacks of...

6.3CVSS0.00369EPSS
Exploits0References3
OSV
OSV
added 2024/05/30 6:15 p.m.3 views

CVE-2024-2421

LenelS2 NetBox access control and event monitoring system was discovered to contain an unauthenticated RCE in versions prior to and including 5.6.1, which allows an attacker to execute malicious commands with elevated permissions...

9.8CVSS5.9AI score0.00523EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/30 12:0 a.m.5 views

NetBox Security Vulnerability

NetBox is a Django, PostgreSql based tool for IP Address Management IPAM and Data Center Infrastructure Management DCIM from the NetBox community. A security vulnerability exists in LenelS2 NetBox 5.6.1 and earlier versions that stems from the presence of a remote code execution vulnerability...

9.3CVSS8AI score0.00523EPSS
Exploits0References3
OSV
OSV
added 2022/10/14 3:15 p.m.7 views

AZL-44613 CVE-2022-32149 affecting package podman for versions less than 5.6.1-2

An attacker may cause a denial of service by crafting an Accept-Language header which ParseAcceptLanguage will take significant time to parse...

7.5CVSS6.7AI score0.01428EPSS
Exploits0References1
CNVD
CNVD
added 2019/05/22 12:0 a.m.3 views

Nagios XI SQL Injection Vulnerability (CNVD-2019-15672)

Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems and more. A SQL injection vulnerability exists in Nagios XI version 5.6.1, which can be exploited by attackers to...

9.8CVSS8.2AI score0.0422EPSS
Exploits5References1
CNVD
CNVD
added 2016/08/10 12:0 a.m.3 views

Adobe Experience Manager Information Disclosure Vulnerability (CNVD-2016-06215)

Adobe Experience Manager is an enterprise content management solution that helps you streamline the management and delivery of your content and assets. An information disclosure vulnerability exists in the Backup feature of Adobe Experience Manager 5.6.1, 6.0, 6.1, 6.2, which can be exploited by...

5.3CVSS6.3AI score0.0275EPSS
Exploits0References1
Rows per page
Query Builder