Lucene search
K

4 matches found

Cvelist
Cvelist
added 2025/11/10 8:43 p.m.11 views

CVE-2025-48878 Combodo iTop vulnerable to IDOR with ModuleInstallation object

Combodo iTop is a web based IT service management tool. In versions on the 3.x branch prior to 3.2.2, an insecure direct object reference allows a user e.g. with Service desk agent profile to create a ModuleInstallation object when they shouldn't be able to do so. Version 3.2.2 fixes the issue...

4.3CVSS0.00176EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/20 12:0 a.m.5 views

PT-2024-30368 · Apache · Apache Dolphinscheduler

Name of the Vulnerable Software and Affected Versions: Apache DolphinScheduler versions prior to 3.2.2 Description: A critical issue has been identified in Apache DolphinScheduler, allowing hackers to execute remote code. This poses a significant security risk. The issue affects versions prior to...

9.8CVSS7.7AI score0.02301EPSS
Exploits1References24
Positive Technologies
Positive Technologies
added 2024/01/02 12:0 a.m.4 views

PT-2024-13605 · Unknown · Openharmony

Name of the Vulnerable Software and Affected Versions: OpenHarmony versions 3.2.2 and prior Description: The issue allows a local attacker to cause a multimedia player crash by modifying a released pointer. Recommendations: For OpenHarmony versions 3.2.2 and prior, at the moment, there is no...

5.5CVSS6.7AI score0.00154EPSS
Exploits0References6
CNVD
CNVD
added 2018/06/15 12:0 a.m.2 views

GitBook online reader cross-site scripting vulnerability

GitBook is a command-line tool for publishing and hosting books online. online reader is one of the online reading modules. A cross-site scripting vulnerability exists in the online reader in GitBook versions prior to 3.2.2, which stems from the program failing to properly filter user input. A...

6.1CVSS6.1AI score0.00937EPSS
Exploits1References1
Rows per page
Query Builder