Lucene search
K

23 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:51 a.m.6 views

CVE-2013-6019

Cross-site scripting XSS vulnerability in Tyler Technologies TaxWeb 3.13.3.1 allows remote attackers to inject arbitrary web script or HTML via the accountNum parameter to an unspecified component...

4.3CVSS5.9AI score0.01012EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:32 a.m.8 views

CVE-2023-5697

A vulnerability classified as problematic has been found in CodeAstro Internet Banking System 1.0. This affects an unknown part of the file pageswithdrawmoney.php. The manipulation of the argument accountnumber with the input 287359614--alert1234...

6.1CVSS7AI score0.00505EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 2:42 a.m.7 views

CVE-2023-5698

A vulnerability classified as problematic was found in CodeAstro Internet Banking System 1.0. This vulnerability affects unknown code of the file pagesdepositmoney.php. The manipulation of the argument accountnumber with the input 421873905--alert9523...

6.1CVSS7.2AI score0.00505EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/01/29 12:0 a.m.5 views

PT-2025-3437 · Unknown · Safety Production Process Management System

Name of the Vulnerable Software and Affected Versions: Safety production process management system version 1.0 Description: The issue allows a remote attacker to escalate privileges, execute arbitrary code, and obtain sensitive information via the password and account number parameters...

9.8CVSS7.8AI score0.00669EPSS
Exploits0References7
NVD
NVD
added 2024/02/29 2:15 a.m.11 views

CVE-2023-51800

Cross Site Scripting XSS vulnerability in School Fees Management System v.1.0 allows a remote attacker to execute arbitrary code via a crafted payload to the mainsettings component in the phone, address, bank, accname, accnumber parameters, newclass and cname parameter, addnewparent function in t...

6.1CVSS6.1AI score0.00628EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/02/29 12:0 a.m.17 views

CVE-2023-51800

Cross Site Scripting XSS vulnerability in School Fees Management System v.1.0 allows a remote attacker to execute arbitrary code via a crafted payload to the mainsettings component in the phone, address, bank, accname, accnumber parameters, newclass and cname parameter, addnewparent function in t...

6.3AI score0.00628EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/02/29 12:0 a.m.12 views

CVE-2023-51800

Cross Site Scripting XSS vulnerability in School Fees Management System v.1.0 allows a remote attacker to execute arbitrary code via a crafted payload to the mainsettings component in the phone, address, bank, accname, accnumber parameters, newclass and cname parameter, addnewparent function in t...

6.5AI score0.00628EPSS
Exploits1References1
OSV
OSV
added 2023/10/23 12:15 a.m.4 views

CVE-2023-5697

A vulnerability classified as problematic has been found in CodeAstro Internet Banking System 1.0. This affects an unknown part of the file pageswithdrawmoney.php. The manipulation of the argument accountnumber with the input 287359614--alert1234!-- leads to cross site scripting. It is possible t...

6.1CVSS3.9AI score
Exploits0References3
OSV
OSV
added 2023/10/23 12:15 a.m.4 views

CVE-2023-5698

A vulnerability classified as problematic was found in CodeAstro Internet Banking System 1.0. This vulnerability affects unknown code of the file pagesdepositmoney.php. The manipulation of the argument accountnumber with the input 421873905--alert9523!-- leads to cross site scripting. The attack...

6.1CVSS3.8AI score0.00505EPSS
Exploits1References3
NVD
NVD
added 2023/10/22 11:15 p.m.24 views

CVE-2023-5696

A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file pagestransfermoney.php. The manipulation of the argument accountnumber with the input 357146928--alert9206!-- leads to cross site...

6.1CVSS4.4AI score0.00472EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/10/22 12:0 a.m.4 views

CodeAstro Internet Banking System Cross-Site Scripting Vulnerability

CodeAstro Internet Banking System is a PHP online banking system from CodeAstro. A cross-site scripting vulnerability exists in CodeAstro Internet Banking System version 1.0, which originates from a cross-site scripting XSS vulnerability in the parameter accountnumber in the file...

6.1CVSS5.8AI score0.00505EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/10/22 12:0 a.m.5 views

CodeAstro Internet Banking System Cross-Site Scripting Vulnerability

CodeAstro Internet Banking System is a PHP online banking system from CodeAstro. A security vulnerability exists in CodeAstro Internet Banking System version 1.0, which originates from a cross-site scripting XSS vulnerability in the parameter accountnumber of the file pagestransfermony.php...

6.1CVSS5.8AI score0.00472EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/10/22 12:0 a.m.4 views

CodeAstro Internet Banking System Cross-Site Scripting Vulnerability

CodeAstro Internet Banking System is a PHP online banking system from CodeAstro. A cross-site scripting vulnerability exists in CodeAstro Internet Banking System version 1.0, which originates from a cross-site scripting XSS vulnerability in the parameter accountnumber in the file...

6.1CVSS5.8AI score0.00505EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2023/10/22 12:0 a.m.6 views

PT-2023-32270 · Unknown · Codeastro Internet Banking System

Name of the Vulnerable Software and Affected Versions: CodeAstro Internet Banking System version 1.0 Description: A problematic issue has been found in the CodeAstro Internet Banking System, affecting an unknown part of the file pages withdraw money.php. The manipulation of the argument account...

6.1CVSS6.7AI score0.00505EPSS
Exploits1References5
CNNVD
CNNVD
added 2022/03/29 12:0 a.m.5 views

SourceCodester Microfinance Management SystemSQL注入漏洞

SourceCodester Microfinance Management System is an application of SourceCodester, Inc. A SQL injection vulnerability exists in SourceCodester Microfinance Management System version 1.0, which The vulnerability originates from the lack of validation of external input SQL statements for the...

9.8CVSS6.1AI score0.00912EPSS
Exploits0References2
OSV
OSV
added 2021/05/24 5:0 p.m.14 views

GHSA-G636-Q5FC-4PR7 accounts: Hash account number using Salt

@alovak found that currently when we build hash of account number we do not "salt" it. Which makes it vulnerable to rainbow table attack. What did you expect to see? I expected salt some random number from configuration to be used in hash.AccountNumber I would generate salt per tenant at least...

7AI score
Exploits0References1
OSV
OSV
added 2019/05/30 4:29 p.m.20 views

CVE-2018-15131

An issue was discovered in Synacor Zimbra Collaboration Suite 8.6.x before 8.6.0 Patch 11, 8.7.x before 8.7.11 Patch 6, 8.8.x before 8.8.8 Patch 9, and 8.8.9 before 8.8.9 Patch 3. Account number enumeration is possible via inconsistent responses for specific types of authentication requests...

5.3CVSS7.1AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2018/08/21 12:0 a.m.6 views

PT-2018-13126 · Ola Cabs · Ola Money

Name of the Vulnerable Software and Affected Versions: Ola Money aka com.olacabs.olamoney version 1.9.0 Description: An issue was discovered in the Ola Money application for Android. If an attacker controls an application with accessibility permissions, then the attacker can read certain Ola Mone...

5.9CVSS6.9AI score0.0117EPSS
Exploits1References4
NVD
NVD
added 2016/02/04 11:59 a.m.20 views

CVE-2015-8269

The API on Fisher-Price Smart Toy Bear devices allows remote attackers to obtain sensitive information or modify data by leveraging presence in an 802.11 network's coverage area and entering an account number...

7.5CVSS7.4AI score0.02289EPSS
Exploits0References3
Prion
Prion
added 2016/02/04 11:59 a.m.18 views

Design/Logic Flaw

The API on Fisher-Price Smart Toy Bear devices allows remote attackers to obtain sensitive information or modify data by leveraging presence in an 802.11 network's coverage area and entering an account number...

6.5CVSS6.8AI score0.02289EPSS
Exploits0References3
Rows per page
Query Builder