Lucene search
+L

159 matches found

Positive Technologies
Positive Technologies
added 2024/12/26 12:0 a.m.7 views

PT-2024-17833 · Unknown · 1000 Projects Portfolio Management System Mca

Name of the Vulnerable Software and Affected Versions: 1000 Projects Portfolio Management System MCA version 1.0 Description: A critical vulnerability was found in the 1000 Projects Portfolio Management System MCA. The issue affects an unknown function of the file /update ach details.php...

9.8CVSS8AI score0.00636EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2024/12/26 12:0 a.m.9 views

PT-2024-17826 · Unknown · 1000 Projects Portfolio Management System Mca

Name of the Vulnerable Software and Affected Versions: 1000 Projects Portfolio Management System MCA version 1.0 Description: A critical vulnerability was found in the 1000 Projects Portfolio Management System MCA. This issue affects an unknown part of the file /update ach.php. The manipulation o...

9.8CVSS7.4AI score0.00698EPSS
Exploits1References10
CNNVD
CNNVD
added 2024/12/26 12:0 a.m.4 views

1000 Projects Portfolio Management System MCA 安全漏洞

1000 Projects Portfolio Management System MCA is an open source portfolio management system from 1000 Projects. A security vulnerability exists in 1000 Projects Portfolio Management System MCA version 1.0, which stems from a parameter q in the file /updateachdetails.php that can lead to SQL...

9.8CVSS7.7AI score0.00636EPSS
Exploits1References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:45 p.m.3 views

Malicious code in ach-client (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
OSV
OSV
added 2024/06/25 1:45 p.m.8 views

MAL-2024-6346 Malicious code in ach-client (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/07 4:15 p.m.27 views

Security Bulletin: IBM Financial Transaction Manager is vulnerable to an XML External Entity Injection (XXE) attack

Summary IBM Financial Transaction Manager for ACH and Check Service v3.0.5.4 and v3.0.5.5 has addressed an XML External Entity Injection vulnerability. Vulnerability Details CVEID:CVE-2023-35892 DESCRIPTION: IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to an XML Extern...

9.1CVSS8.1AI score0.00816EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2023/07/18 12:0 a.m.6 views

WordPress LittleBot ACH for Stripe + Plaid Plugin <= 1.2.8 is vulnerable to Cross Site Scripting (XSS)

Software LittleBot ACH for Stripe + Plaid Type Plugin Vulnerable versions = 1.2.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5af20012a51f Credits Rafie Muhammad...

6.9AI score0.00284EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/05/15 12:11 p.m.21 views

Security Bulletin: IBM Transformation Extender Advanced is Potentially Vulnerable to an XML External Entity (XXE) Injection in its REST API.

Summary IBM 10x framework used by IBM Transformation Extender Advanced REST API is vulnerable to XXE injection. The vulnerability was reported by IBM Financial Transaction Manager for ACH Services for Multi-Platform which also uses the IBM 10x framework. Vulnerability Details CVEID: CVE-2017-1758...

7.1CVSS0.7AI score0.01635EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/05/06 12:0 a.m.15 views

Beijing ACH Technology Development Co., Ltd. has a DLL hijacking vulnerability in kingView

KingView is the first industrial configuration software product launched in China by Beijing Acontrol Technology Development Co. Ltd. has a DLL hijacking vulnerability, which can be exploited by attackers to load malicious DLL files for command execution...

4.9AI score
Exploits0
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.14 views

WordPress LittleBot ACH for Stripe + Plaid plugin <= 1.2.8 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress LittleBot ACH for Stripe + Plaid plugin versions = 1.2.8. Solution No patched version available...

3.5AI score
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/18 6:21 p.m.23 views

Security Bulletin: Financial Transaction Manager for ACH Services is affected by a potential logout session timeout (CVE-2020-4555)

Summary Login session may not be invalidated in a timely manner on timeout. Vulnerability Details CVEID: CVE-2020-4555 DESCRIPTION: IBM Financial Transaction Manager for High Value Payments for Multi-Platform does not invalidate session after logout which could allow an authenticated user to...

6.3CVSS0.9AI score0.00755EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/08/14 7:13 p.m.12 views

Security Bulletin: Financial Transaction Manager for ACH Services is affected by a potential information disclosure id 177835

Summary Financial Transaction Manager for ACH Services FTM ACH for Multi-Platform has addressed the following vulnerability. A potential vulnerability in the Apache Commons Codec module could allow information disclosure. Vulnerability Details Third Party Entry: 177835 DESCRIPTION: Apache Commons...

2.4AI score
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/06 11:53 a.m.17 views

Security Bulletin: Financial Transaction Manager for ACH Services is affected by a potential validation vulnerability (CVE-2019-4517)

Summary IBM Financial Transaction Manager for ACH Services FTM ACH for Multi-Platform has addressed the following vulnerability. A potential validation vulnerability could allow a remote attacker to conduct phishing attacks, using an open redirect attack. Vulnerability Details CVEID: CVE-2019-451...

1.6AI score
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/06 11:28 a.m.27 views

Security Bulletin: Vulnerability in IBM Java Runtime affect Financial Transaction Manager for ACH Services (CVE-2020-2654)

Summary There is a vulnerability in IBM® Runtime Environment Java™ Version 8 used by Financial Transaction Manager for ACH Services. Financial Transaction Manager for ACH Services FTM ACH has addressed the applicable CVE.brIf you run your own Java code using the IBM Java Runtime delivered with th...

4.3CVSS2.3AI score0.03823EPSS
Exploits0Affected Software1
Krebs on Security
Krebs on Security
added 2020/05/16 4:34 a.m.62 views

U.S. Secret Service: “Massive Fraud” Against State Unemployment Insurance Programs

A well-organized Nigerian crime ring is exploiting the COVID-19 crisis by committing large-scale fraud against multiple state unemployment insurance programs, with potential losses in the hundreds of millions of dollars, according to a new alert issued by the U.S. Secret Service. A memo seen by...

6.7AI score
Exploits0
Snyk
Snyk
added 2020/04/17 12:0 a.m.3 views

Malicious Package

Overview ach-client is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using ach-client...

8CVSS5.5AI score
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2020/03/25 8:15 p.m.25 views

Security Bulletin: Security: A vulnerability in IBM Java Runtime affect Financial Transaction Manager for ACH Services (CVE-2019-4732)

Summary There is vulnerability in IBM® Runtime Environment Java™ Version 8 used by Financial Transaction Manager for ACH Services. Financial Transaction Manager for ACH Services FTM ACH has addressed the applicable CVE.brIf you run your own Java code using the IBM Java Runtime delivered with this...

7.2CVSS2.1AI score0.00561EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/03/25 6:37 p.m.10 views

Security Bulletin: Financial Transaction Manager for ACH Services is affected by a potential Cross Site Scripting vulnerability (CVE-2019-4622)

Summary Financial Transaction Manager for ACH Services FTM ACH for Multi-Platform has addressed the following vulnerability. A potential cross site scripting XSS vulnerability could allow JavaScript to be executed. Vulnerability Details CVEID: CVE-2019-4622 DESCRIPTION: IBM Financial Transaction...

0.5AI score
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/03/25 6:12 p.m.15 views

Security Bulletin: Financial Transaction Manager for ACH Services is affected by a potential validation vulnerability (CVE-2019-4519)

Summary IBM Financial Transaction Manager for ACH Services FTM ACH for Multi-Platform has addressed the following vulnerability. A potential validation vulnerability does not properly validate input which could allow an authenticated user prevent audit log entries. Vulnerability Details CVEID:...

1.3AI score
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/03/25 5:58 p.m.13 views

Security Bulletin: Financial Transaction Manager for ACH Services is affected by a potential validation vulnerability (CVE-2019-4518)

Summary IBM Financial Transaction Manager for ACH Services FTM ACH for Multi-Platform has addressed the following vulnerability. A potential validation vulnerability does not properly validate input which could allow an authenticated user to issue server commands or modify data in the database...

1.6AI score
Exploits0Affected Software1
Rows per page
Query Builder