25 matches found
EUVD-2024-32346
Malicious code in bioql PyPI...
EUVD-2025-1780
Malicious code in bioql PyPI...
CVE-2025-0586
The a+HRD from aEnrich Technology has an Insecure Deserialization vulnerability, allowing remote attackers with database modification privileges and regular system privileges to perform arbitrary code execution...
CVE-2025-0585
The a+HRD from aEnrich Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...
CVE-2025-0584
The a+HRD from aEnrich Technology has a Server-side Request Forgery, allowing unauthenticated remote attackers to exploit this vulnerability to probe internal network...
CVE-2025-0585
The a+HRD from aEnrich Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...
CVE-2025-0586 aEnrich Technology a+HRD - Insecure Deserialization
The a+HRD from aEnrich Technology has an Insecure Deserialization vulnerability, allowing remote attackers with database modification privileges and regular system privileges to perform arbitrary code execution...
CVE-2025-0586
CVE-2025-0586 concerns the a+HRD from aEnrich Technology with an Insecure Deserialization vulnerability that enables remote attackers with database modification privileges and regular system privileges to perform arbitrary code execution. The connected documents repeatedly state this insecure des...
CVE-2025-0585 aEnrich Technology a+HRD - SQL Injection
The a+HRD from aEnrich Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...
CVE-2025-0585 aEnrich Technology a+HRD - SQL Injection
The a+HRD from aEnrich Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...
CVE-2025-0585
CVE-2025-0585 affects the a+HRD product from aEnrich Technology with a SQL Injection vulnerability that allows unauthenticated remote attackers to read, modify, and delete database contents. Connected sources corroborate a SQLi issue but vary on affected versions; CNNVD cites a+HRD 7.5 and prior,...
CVE-2025-0584 aEnrich Technology a+HRD - Server-Side Request Forgery (SSRF)
The a+HRD from aEnrich Technology has a Server-side Request Forgery, allowing unauthenticated remote attackers to exploit this vulnerability to probe internal network...
CVE-2025-0584 aEnrich Technology a+HRD - Server-Side Request Forgery (SSRF)
The a+HRD from aEnrich Technology has a Server-side Request Forgery, allowing unauthenticated remote attackers to exploit this vulnerability to probe internal network...
CVE-2025-0584
The CVE-2025-0584 entry concerns the a+HRD product from aEnrich Technology and is described as a Server-Side Request Forgery (SSRF). The vulnerability enables unauthenticated remote attackers to probe an internal network, indicating possible internal-asset discovery or access risk. Documented det...
CVE-2025-0583 aEnrich Technology a+HRD - Reflected Cross-site Scripting(XSS)
The a+HRD from aEnrich Technology has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks...
CVE-2025-0583 aEnrich Technology a+HRD - Reflected Cross-site Scripting(XSS)
The a+HRD from aEnrich Technology has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks...
CVE-2025-0583
CVE-2025-0583 concerns the a+HRD component from aEnrich Technology with a Reflected Cross-site Scripting (XSS) vulnerability. The canonical description across sources states that unauthenticated remote attackers can craft phishing-initiated requests to cause the execution of arbitrary JavaScript ...
PT-2025-3974 · Aenrich Technology · A+Hrd
Name of the Vulnerable Software and Affected Versions: a+HRD from aEnrich Technology affected versions not specified Description: The issue is a Reflected Cross-site Scripting vulnerability, which allows unauthenticated remote attackers to execute arbitrary JavaScript codes in the user's browser...
PT-2025-3977 · Aenrich Technology · A+Hrd
Name of the Vulnerable Software and Affected Versions: a+HRD from aEnrich Technology affected versions not specified Description: The issue is related to an Insecure Deserialization vulnerability. This vulnerability allows remote attackers with database modification privileges and regular system...
CVE-2024-3775
aEnrich Technology a+HRD's functionality for downloading files using youtube-dl.exe does not properly restrict user input. This allows attackers to pass arbitrary arguments to youtube-dl.exe, leading to the download of partial unauthorized files...