Lucene search
K

8 matches found

EUVD
EUVD
added 2026/04/09 12:31 p.m.3 views

EUVD-2026-20886

Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...

8.7CVSS6.1AI score0.0029EPSS
Exploits0References3
NVD
NVD
added 2026/04/09 10:16 a.m.4 views

CVE-2026-34184

Hydrosystem Control System does not enforce authorization for some directories. This allows an unauthorized attacker to read all files in these directories and even execute some of them. Critically the attacker could run PHP scripts directly on the connected database.This issue was fixed...

9.1CVSS0.0027EPSS
Exploits0References2
NVD
NVD
added 2026/04/09 10:16 a.m.4 views

CVE-2026-34185

Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...

8.8CVSS0.0029EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/09 9:41 a.m.2 views

CVE-2026-34185 SQL Injection in Hydrosystem Control System

Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...

8.7CVSS6.1AI score0.0029EPSS
Exploits0References2
CVE
CVE
added 2026/04/09 9:41 a.m.11 views

CVE-2026-34184

CVE-2026-34184 : Hydrosystem Control System fails to enforce authorization for some directories, allowing an unauthorized attacker to read files and potentially execute them. The description explicitly states an attacker could run PHP scripts directly on the connected database. The issue is fixed...

9.1CVSS6AI score0.0027EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/29 9:20 p.m.5 views

CVE-2025-13917

WSS Agent, prior to 9.8.5, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user...

7CVSS5.8AI score0.00083EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/28 4:29 p.m.3 views

CVE-2025-13917 Elevation of Privileges in Web Security Services (WSS) Agent

WSS Agent, prior to 9.8.5, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user...

7CVSS5.8AI score0.00083EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/28 4:29 p.m.5 views

CVE-2025-13917

WSS Agent, prior to 9.8.5, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user...

7CVSS5.8AI score0.00083EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder