Lucene search
K

53 matches found

Cvelist
Cvelist
added 2026/01/08 12:0 a.m.23 views

CVE-2025-61546

There is an issue on the /PSP/appNET/Store/CartV12.aspx/GetUnitPrice endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34 fixed in 19.69 that enables remote attacker to create financial discrepancies by purchasing items with a negative quantity. This vulnerability is possible d...

0.00488EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2026/01/08 12:0 a.m.3 views

CVE-2025-61548

SQL Injection is present on the hfInventoryDistFormID parameter in the /PSP/appNET/Store/CartV12.aspx/GetUnitPrice endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34 fixed in 19.69. Unsanitized user input is incorporated directly into SQL queries without proper parameterizati...

6.5AI score0.00473EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2026/01/08 12:0 a.m.8 views

PT-2026-1827

Name of the Vulnerable Software and Affected Versions edu Business Solutions Print Shop Pro WebDesk version 18.34 Description A flaw exists in the /PSP/appNET/Store/CartV12.aspx/GetUnitPrice API endpoint that allows a remote attacker to create financial discrepancies. This is possible by purchasi...

9.1CVSS6.6AI score0.00488EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-2100

Malware in sbrugna...

9.8CVSS6AI score0.00517EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2025/09/19 11:8 p.m.151 views

Exploit for CVE-2025-61546

vulnerability-disclosures Public disclosures of software vulne...

9.8CVSS6.8AI score0.00488EPSS
Exploits6
RedhatCVE
RedhatCVE
added 2025/05/22 12:54 a.m.9 views

CVE-2016-15034

A vulnerability was found in Dynacase Webdesk and classified as critical. Affected by this issue is the function freedomrsssearch of the file freedomrsssearch.php. The manipulation leads to sql injection. Upgrading to version 3.2-20180305 is able to address this issue. The patch is identified as...

9.8CVSS7.5AI score0.00517EPSS
Exploits0References1
OSV
OSV
added 2023/07/10 6:15 p.m.13 views

CVE-2016-15034

A vulnerability was found in Dynacase Webdesk and classified as critical. Affected by this issue is the function freedomrsssearch of the file freedomrsssearch.php. The manipulation leads to sql injection. Upgrading to version 3.2-20180305 is able to address this issue. The patch is identified as...

9.8CVSS7.7AI score
Exploits0References4
NVD
NVD
added 2023/07/10 6:15 p.m.11 views

CVE-2016-15034

A vulnerability was found in Dynacase Webdesk and classified as critical. Affected by this issue is the function freedomrsssearch of the file freedomrsssearch.php. The manipulation leads to sql injection. Upgrading to version 3.2-20180305 is able to address this issue. The patch is identified as...

9.8CVSS6.9AI score0.00517EPSS
Exploits0References4
Prion
Prion
added 2023/07/10 6:15 p.m.12 views

Sql injection

A vulnerability was found in Dynacase Webdesk and classified as critical. Affected by this issue is the function freedomrsssearch of the file freedomrsssearch.php. The manipulation leads to sql injection. Upgrading to version 3.2-20180305 is able to address this issue. The patch is identified as...

7.5CVSS7.8AI score0.00517EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/07/10 5:11 p.m.18 views

CVE-2016-15034 Dynacase Webdesk freedomrss_search.php freedomrss_search sql injection

A vulnerability was found in Dynacase Webdesk and classified as critical. Affected by this issue is the function freedomrsssearch of the file freedomrsssearch.php. The manipulation leads to sql injection. Upgrading to version 3.2-20180305 is able to address this issue. The patch is identified as...

5.5CVSS9.9AI score0.00517EPSS
Exploits0References4
CVE
CVE
added 2023/07/10 5:11 p.m.37 views

CVE-2016-15034

Dynacase Webdesk contains a SQL injection vulnerability in the freedomrss_search function (freedomrss_search.php). The issue affects versions prior to 3.2-20180305 and is mitigated by upgrading to 3.2-20180305; patch id 750a9b35af182950c952faf6ddfdcc50a2b25f8b. Identifiers include VDB-233366. Con...

9.8CVSS7.8AI score0.00517EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2023/07/10 12:0 a.m.3 views

Dynacase Webdesk SQL注入漏洞

Dynacase Webdesk is the operator interface for Dynacase Platform. An SQL injection vulnerability exists in versions prior to Dynacase Webdesk 3.2-20180305, which stems from the function Freedomrsssearch in the file Freedomrsssearch.php that can lead to sql injection...

9.8CVSS6.5AI score0.00517EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/07/10 12:0 a.m.4 views

PT-2023-10353 · Dynacase · Dynacase Webdesk

Name of the Vulnerable Software and Affected Versions: Dynacase Webdesk versions prior to 3.2-20180305 Description: A critical issue was found in Dynacase Webdesk, affecting the freedomrss search function of the freedomrss search.php file. This issue leads to sql injection. Recommendations: Upgra...

9.8CVSS7.6AI score0.00517EPSS
Exploits0References7
Rows per page
Query Builder