CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2025/10/14 10:15 a.m.•12 views

CVE-2025-10228

Session Fixation vulnerability in Rolantis Information Technologies Agentis allows Session Hijacking. This issue affects Agentis: before 4.44...

8.8CVSS0.00266EPSS

CVE•added 2025/10/14 9:20 a.m.•13 views

CVE-2025-10228

CVE-2025-10228 affects Rolantis Information Technologies Agentis prior to version 4.44. The issue is a session fixation flaw that can lead to session hijacking, enabling an attacker to manipulate or set a user session identifier potentially before authentication. This vulnerability is reported wi...

Cvelist•added 2025/10/14 9:20 a.m.•9 views

CVE-2025-10228 Session Hijacking in Rolantis Information Technologies' Agentis

Session Fixation vulnerability in Rolantis Information Technologies Agentis allows Session Hijacking. This issue affects Agentis: before 4.44...

8.8CVSS0.00266EPSS

Vulnrichment•added 2025/10/14 9:20 a.m.•3 views

CVE-2025-10228 Session Hijacking in Rolantis Information Technologies' Agentis

Session Fixation vulnerability in Rolantis Information Technologies Agentis allows Session Hijacking. This issue affects Agentis: before 4.44...

EUVD•added 2025/10/14 9:20 a.m.•3 views

EUVD-2025-34152

Session Fixation vulnerability in Rolantis Information Technologies Agentis allows Session Hijacking.This issue affects Agentis: before 4.44...

8.8CVSS6.4AI score0.00266EPSS

ATTACKERKB•added 2025/10/14 9:20 a.m.•4 views

CVE-2025-10228

Session Fixation vulnerability in Rolantis Information Technologies Agentis allows Session Hijacking. This issue affects Agentis: before 4.44...

Positive Technologies•added 2025/10/14 12:0 a.m.•4 views

Exploits0References3

PT-2025-41864

Name of the Vulnerable Software and Affected Versions Rolantis Information Technologies Agentis versions prior to 4.44 Description A session fixation issue exists in Rolantis Information Technologies Agentis. This allows an attacker to set or manipulate a user's session identifier before...

CNNVD•added 2025/10/14 12:0 a.m.•1 views

Exploits0References8

Rolantis Agentis 授权问题漏洞

Rolantis Agentis is a software for enterprise information management and automated processing from the Turkish company Rolantis. An authorization issue vulnerability exists in Rolantis Agentis versions prior to 4.44 that stems from a session fixation issue that could lead to session hijacking...

8.8CVSS6.4AI score0.00266EPSS

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-22310

Malicious code in bioql PyPI...

10CVSS6.6AI score0.00331EPSS

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-22311

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.0019EPSS

RedhatCVE•added 2025/07/24 12:27 p.m.•11 views

CVE-2025-4284

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Rolantis Information Technologies Agentis allows Reflected XSS, DOM-Based XSS. This issue affects Agentis: before 4.32...

RedhatCVE•added 2025/07/24 11:26 a.m.•12 views

CVE-2025-4285

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Rolantis Information Technologies Agentis allows SQL Injection. This issue affects Agentis: before 4.32...

10CVSS5.6AI score0.00331EPSS

NVD•added 2025/07/22 12:15 p.m.•5 views

CVE-2025-4284

6.1CVSS0.0019EPSS

NVD•added 2025/07/22 12:15 p.m.•5 views

CVE-2025-4285

10CVSS0.00331EPSS

CVE•added 2025/07/22 11:31 a.m.•16 views

CVE-2025-4284

CVE-2025-4284 affects Rolantis Information Technologies’ Agentis (pre-4.32). The issue is an Improper Neutralization of Input During Web Page Generation that enables Reflected XSS and DOM-Based XSS. Per the sources, the vulnerability impacts Agentis versions before 4.32, with CVSSv3.1 base metric...

Vulnrichment•added 2025/07/22 11:31 a.m.•4 views

CVE-2025-4284 Reflected XSS in Rolantis Information Technologies' Agentis

ATTACKERKB•added 2025/07/22 11:31 a.m.•4 views

CVE-2025-4284