35 matches found
EUVD-2011-2976
Malware in sbrugna...
EUVD-2025-23293
Malicious code in bioql PyPI...
CVE-2025-58462
OPEXUS FOIAXpress Public Access Link PAL before version 11.13.1.0 allows SQL injection via SearchPopularDocs.aspx. A remote, unauthenticated attacker could read, write, or delete any content in the underlying database...
CVE-2025-58462
OPEXUS FOIAXpress Public Access Link PAL before version 11.13.1.0 allows SQL injection via SearchPopularDocs.aspx. A remote, unauthenticated attacker could read, write, or delete any content in the underlying database...
CVE-2025-58462 OPEXUS FOIAXpress PAL SQL injection
OPEXUS FOIAXpress Public Access Link PAL before version 11.13.1.0 allows SQL injection via SearchPopularDocs.aspx. A remote, unauthenticated attacker could read, write, or delete any content in the underlying database...
CVE-2025-58462
CVE-2025-58462 affects OPEXUS FOIAXpress Public Access Link (PAL) prior to version 11.13.1.0. A remote, unauthenticated attacker can exploit an SQL injection in the SearchPopularDocs.aspx page to read, write, or delete data in the underlying database. Impact is high for confidentiality, integrity...
PT-2025-36976
Name of the Vulnerable Software and Affected Versions: OPEXUS FOIAXpress Public Access Link PAL versions prior to 11.13.1.0 Description: A SQL injection flaw exists in OPEXUS FOIAXpress Public Access Link PAL via the SearchPopularDocs.aspx page. A remote, unauthenticated attacker could potentiall...
OPEXUS FOIAXpress Public Access Link 安全漏洞
OPEXUS FOIAXpress Public Access Link OPEXUS FOIAXpress PAL is a secure, public-facing web portal from OPEXUS that connects organizations with requesters and integrates with payment solutions, including payment solutions. A security vulnerability exists in OPEXUS FOIAXpress Public Access Link prio...
PT-2025-32614 · Sap · Sap Netweaver Application Server Abap
Name of the Vulnerable Software and Affected Versions: SAP NetWeaver Application Server ABAP Documento BIC affected versions not specified Description: SAP NetWeaver Application Server ABAP BIC Document allows an unauthenticated attacker to manipulate a URL link. Accessing this crafted link throu...
CVE-2025-54832
OPEXUS FOIAXpress Public Access Link PAL, version v11.1.0, allows an authenticated user to add entries to the list of states and territories...
CVE-2025-54834
OPEXUS FOIAXpress Public Access Link PAL version v11.1.0 allows an unauthenticated, remote attacker to query the /App/CreateRequest.aspx endpoint to check for the existence of valid usernames. There are no rate-limiting mechanisms in place...
CVE-2025-54833
OPEXUS FOIAXpress Public Access Link PAL version v11.1.0 allows attackers to bypass account-lockout and CAPTCHA protections. Unauthenticated remote attackers can more easily brute force passwords...
CVE-2025-54832
OPEXUS FOIAXpress Public Access Link PAL, version v11.1.0, allows an authenticated user to add entries to the list of states and territories...
CVE-2025-54833 OPEXUS FOIAXpress Public Access Link (PAL) account-lockout and CAPTCHA protection bypass
OPEXUS FOIAXpress Public Access Link PAL version v11.1.0 allows attackers to bypass account-lockout and CAPTCHA protections. Unauthenticated remote attackers can more easily brute force passwords...
CVE-2025-54834
CVE-2025-54834 affects OPEXUS FOIAXpress PAL v11.1.0. An unauthenticated attacker can query the /App/CreateRequest.aspx endpoint to enumerate valid usernames due to absent rate limiting. Impact is exposure of user existence; CVSS vectors cited in public records show network access with low to mod...
CVE-2025-54832 OPEXUS FOIAXpress Public Access Link (PAL) state and territory list unauthorized modification
OPEXUS FOIAXpress Public Access Link PAL, version v11.1.0, allows an authenticated user to add entries to the list of states and territories...
CVE-2025-54832
Vulnerability summary (CVE-2025-54832) : In OPEXUS FOIAXpress Public Access Link (PAL) v11.1.0, an authenticated user can modify the list of states and territories. The issue is tied to PAL’s handling of authorized content changes; the core cause is not explicitly detailed in the provided documen...
CVE-2025-54832 OPEXUS FOIAXpress Public Access Link (PAL) state and territory list unauthorized modification
OPEXUS FOIAXpress Public Access Link PAL, version v11.1.0, allows an authenticated user to add entries to the list of states and territories...
PT-2025-31565 · Opexus · Opexus Foiaxpress Public Access Link
Name of the Vulnerable Software and Affected Versions: OPEXUS FOIAXpress Public Access Link PAL version v11.1.0 Description: An authenticated user can add entries to the list of states and territories. Recommendations: At the moment, there is no information about a newer version that contains a f...
OPEXUS FOIAXpress Public Access Link(OPEXUS FOIAXpress PAL) 安全漏洞
OPEXUS FOIAXpress Public Access Link OPEXUS FOIAXpress PAL is a secure public-facing web portal from OPEXUS that connects organizations with requesters and integrates with payment solutions, including payment solutions. A security vulnerability exists in OPEXUS FOIAXpress Public Access Link OPEXU...