Lucene search
K

7 matches found

EUVD
EUVD
added 2026/04/08 6:11 p.m.1 views

EUVD-2026-20560

Zammad is a web based open source helpdesk/customer support system. Prior to 7.0.1 and 6.5.4, the SSO mechanism in Zammad was not verifying the header originates from a trusted SSO proxy/gateway before applying further actions on it. This vulnerability is fixed in 7.0.1 and 6.5.4...

2.3CVSS5.9AI score0.001EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/21 10:25 p.m.4 views

CVE-2026-21923

Vulnerability in the Oracle Life Sciences Central Designer product of Oracle Health Sciences Applications component: Platform. The supported version that is affected is 7.0.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Life...

6.5CVSS5.4AI score0.00222EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/12/13 12:0 a.m.3 views

OTCMS SQL Injection Vulnerability

OTCMS Nettie CMS is an article-based web content management system CMS. A SQL injection vulnerability exists in OTCMS version 7.01, which originates from the parameter sqlContent in the file /admin/indbackstage.php that can lead to SQL injection...

7.2CVSS8AI score0.00584EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/05/28 12:0 a.m.3 views

OpenEMR 授权问题漏洞

OpenEMR is an open source medical management system from the OpenEMR community. The system can be used for medical practice management, electronic medical records, prescription writing and medical billing requests. An authorization issue vulnerability previously existed in OpenEMR version 7.0.1. ...

8.1CVSS6.8AI score0.00559EPSS
Exploits1References3
OSV
OSV
added 2020/11/19 4:15 p.m.4 views

CVE-2020-4718

IBM Jazz Reporting Service 6.0.6, 6.0.6.1, 7.0, and 7.0.1 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

5.4CVSS6.1AI score0.00554EPSS
Exploits0References2
CNVD
CNVD
added 2020/06/04 12:0 a.m.2 views

Micro Focus ArcSight Logger Cross-Site Scripting Vulnerability (CNVD-2020-36749)

Micro Focus ArcSight Logger is a suite of log management software from Micro Focus UK. The software collects and integrates data from any log generation source for log management, searching, indexing, reporting, analysis and retention. A cross-site scripting vulnerability exists in Micro Focus...

6.1CVSS6.3AI score0.00641EPSS
Exploits0References1
CNVD
CNVD
added 2019/01/25 12:0 a.m.4 views

IBM Security Identity Manager Virtual Appliance Information Disclosure Vulnerability (CNVD-2019-07175)

IBM Security Identity Manager ISIM is a suite of identity management and governance solutions from IBM in the United States. The solution automates the creation, modification, re-authentication and termination of user privileges throughout the user lifecycle and supports policy-based password...

7.8CVSS6.9AI score0.00249EPSS
Exploits0References1
Rows per page
Query Builder