Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-17440

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00433EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 8:22 a.m.5 views

CVE-2024-1706

A vulnerability was determined in ZKTeco ZKBio Access IVS up to 3.3.2. This impacts an unknown function of the component Department Name Search Bar. This manipulation with the input hi causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been publicly...

5.4CVSS6.7AI score0.00433EPSS
Exploits0References1
Prion
Prion
added 2024/02/21 6:15 p.m.17 views

Cross site scripting

A vulnerability, which was classified as problematic, has been found in ZKTeco ZKBio Access IVS up to 3.3.2. Affected by this issue is some unknown functionality of the component Department Name Search Bar. The manipulation with the input hi leads to cross site scripting. The attack may be launch...

4CVSS6.3AI score0.00433EPSS
Exploits0References3
CVE
CVE
added 2024/02/21 6:0 p.m.56 views

CVE-2024-1706

CVE-2024-1706 affects ZKTeco ZKBio Access IVS up to 3.3.2, specifically the Department Name Search Bar component. The vulnerability is an input-based cross-site scripting (XSS) issue that can be exploited remotely; exploitation requires user interaction. Public disclosures exist. The vendor notes...

5.4CVSS3.7AI score0.00433EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2024/02/21 6:0 p.m.20 views

CVE-2024-1706 ZKTeco ZKBio Access IVS Department Name Search Bar cross site scripting

A vulnerability was determined in ZKTeco ZKBio Access IVS up to 3.3.2. This impacts an unknown function of the component Department Name Search Bar. This manipulation with the input hi causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been publicly...

5.1CVSS4AI score0.00433EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2023/08/07 12:0 a.m.8 views

The vulnerability of the web platform used for creating ZKBio Access lVS control and access management systems stems from insufficient protection of sensitive data. This allows a malicious actor to gain unauthorized access to the protected information.

The vulnerability of the web platform used for creating ZKBio Access lVS access control and management systems is related to insufficient protection of operational data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

6.5CVSS7.2AI score0.00502EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/08/07 12:0 a.m.6 views

The vulnerability in the web platform used for creating ZKBio Access lVS control and access management systems stems from errors in processing the relative path to the catalog. This allows a hacker to gain access to and read arbitrary files.

The vulnerability of the web platform used for creating ZKBio Access lVS access control and management systems is related to errors in processing the relative path to the catalog. Exploiting this vulnerability could allow a malicious actor to gain read access to arbitrary files...

7.8CVSS7.3AI score0.00609EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder