7 matches found
CVE-2025-40773
A vulnerability has been identified in SiPass integrated All versions V3.0. Affected server applications contains a broken access control vulnerability. The authorization mechanism lacks sufficient server-side checks, allowing an attacker to execute a specific API request. Successful exploitation...
PT-2025-40980
Name of the Vulnerable Software and Affected Versions Callvision Emergency Code versions prior to 3.0 Description A flaw exists in Callvision Emergency Code that allows for SQL Injection, including Blind SQL Injection. This issue could grant attackers full database access. The vulnerability is...
WordPress Reservit Hotel plugin < 3.0 - Admin+ Stored XSS vulnerability
Admin+ Stored XSS vulnerability discovered by Ilteris Kaan Pehlivan in WordPress Plugin Reservit Hotel versions 3.0...
CVE-2023-2957 SQLi in Lisa Softwares Florist Site
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Lisa Software Florist Site allows SQL Injection. This issue affects Florist Site: before 3.0...
BULUTDESK CALLCENTER SQL注入漏洞
BULUTDESK CALLCENTER is a versatile and easy-to-use call center software from BULUTDESK. A SQL injection vulnerability exists in BULUTDESK CALLCENTER versions prior to 3.0. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor's announcement...
CVE-2022-29883
A vulnerability has been identified in SICAM T All versions V3.0. Affected devices do not restrict unauthenticated access to certain pages of the web interface. This could allow an attacker to delete log files without authentication...
Cisco Identity Services Engine 跨站脚本漏洞
Cisco Identity Services Engine ISE is a next-generation identity and access control policy platform that enables organizations to enforce compliance, enhance infrastructure security, and streamline their service operations. A stored cross-site scripting vulnerability exists in the Web management...