Lucene search
K

35 matches found

NVD
NVD
added 2026/06/11 1:16 p.m.13 views

CVE-2026-11561

Improper neutralization of special elements used in an expression language statement 'expression language injection' vulnerability in Soagen Informatics Technologies Software and Consulting Inc. Apinizer allows Code Injection. This issue affects Apinizer: from 2026.04.0 before 2026.04.6...

9.8CVSS0.00417EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/06/11 12:28 p.m.9 views

CVE-2026-11561 SSTI in Soagen Informatics' Apinizer

Improper neutralization of special elements used in an expression language statement 'expression language injection' vulnerability in Soagen Informatics Technologies Software and Consulting Inc. Apinizer allows Code Injection. This issue affects Apinizer: from 2026.04.0 before 2026.04.6...

9.8CVSS5.5AI score0.00417EPSS
Exploits1References1
CVE
CVE
added 2026/06/11 12:28 p.m.21 views

CVE-2026-11561

CVE-2026-11561 describes an expression language injection in Apinizer by Soagen Informatics Technologies Software and Consulting Inc. The issue arises from improper neutralization of special elements used in an expression language statement, enabling code injection. Affected versions are Apinizer...

9.8CVSS5.5AI score0.00417EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/06/11 12:28 p.m.28 views

CVE-2026-11561 SSTI in Soagen Informatics' Apinizer

Improper neutralization of special elements used in an expression language statement 'expression language injection' vulnerability in Soagen Informatics Technologies Software and Consulting Inc. Apinizer allows Code Injection. This issue affects Apinizer: from 2026.04.0 before 2026.04.6...

9.8CVSS0.00417EPSS
Exploits1References1
EUVD
EUVD
added 2026/06/11 12:28 p.m.8 views

EUVD-2026-36238

Improper neutralization of special elements used in an expression language statement 'expression language injection' vulnerability in Soagen Informatics Technologies Software and Consulting Inc. Apinizer allows Code Injection. This issue affects Apinizer: from 2026.04.0 before 2026.04.6...

5.3CVSS5.5AI score0.00417EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/06/11 12:0 a.m.14 views

Soagen Apinizer 安全漏洞

Soagen Apinizer is an API management and API gateway platform developed by the Turkish company Soagen. Versions of Soagen Apinizer from 2026.04.0 to 2026.04.6 contained security vulnerabilities. These vulnerabilities were caused by improper handling of special elements in expressions language...

9.8CVSS5.4AI score0.00417EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/06/11 12:0 a.m.16 views

PT-2026-48658

Improper neutralization of special elements used in an expression language statement 'expression language injection' vulnerability in Soagen Informatics Technologies Software and Consulting Inc. Apinizer allows Code Injection. This issue affects Apinizer: from 2026.04.0 before 2026.04.6...

5.3CVSS5.5AI score0.00417EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-46802

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00307EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-46800

Malicious code in bioql PyPI...

9.9CVSS6.6AI score0.00434EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-46801

Malicious code in bioql PyPI...

9.6CVSS6.6AI score0.00363EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:24 a.m.2 views

CVE-2024-5620

Authentication Bypass Using an Alternate Path or Channel vulnerability in PruvaSoft Informatics Apinizer Management Console allows Authentication Bypass. This issue affects Apinizer Management Console: before 2024.05.1...

6.5CVSS5.8AI score0.00307EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:24 a.m.6 views

CVE-2024-5625

Improper Restriction of XML External Entity Reference vulnerability in PruvaSoft Informatics Apinizer Management Console allows Data Serialization External Entities Blowup. This issue affects Apinizer Management Console: before 2024.05.1...

6.5CVSS5.8AI score0.00359EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 6:31 a.m.3 views

CVE-2024-5619

Authorization Bypass Through User-Controlled Key vulnerability in PruvaSoft Informatics Apinizer Management Console allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Apinizer Management Console: before 2024.05.1...

9.6CVSS5.8AI score0.00363EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 6:18 a.m.3 views

CVE-2024-5618

Incorrect Permission Assignment for Critical Resource vulnerability in PruvaSoft Informatics Apinizer Management Console allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Apinizer Management Console: before 2024.05.1...

9.9CVSS5.8AI score0.00434EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/07/18 6:15 p.m.3 views

CVE-2024-5625

Improper Restriction of XML External Entity Reference vulnerability in PruvaSoft Informatics Apinizer Management Console allows Data Serialization External Entities Blowup. This issue affects Apinizer Management Console: before 2024.05.1...

6.5CVSS5.8AI score0.00359EPSS
Exploits0References3
NVD
NVD
added 2024/07/18 5:15 p.m.20 views

CVE-2024-5620

Authentication Bypass Using an Alternate Path or Channel vulnerability in PruvaSoft Informatics Apinizer Management Console allows Authentication Bypass. This issue affects Apinizer Management Console: before 2024.05.1...

6.5CVSS0.00307EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/07/18 5:15 p.m.3 views

CVE-2024-5620

Authentication Bypass Using an Alternate Path or Channel vulnerability in PruvaSoft Informatics Apinizer Management Console allows Authentication Bypass. This issue affects Apinizer Management Console: before 2024.05.1...

6.5CVSS5.8AI score0.00307EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2024/07/18 5:15 p.m.6 views

CVE-2024-5619

Authorization Bypass Through User-Controlled Key vulnerability in PruvaSoft Informatics Apinizer Management Console allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Apinizer Management Console: before 2024.05.1...

9.6CVSS5.8AI score0.00363EPSS
Exploits0References3
NVD
NVD
added 2024/07/18 5:15 p.m.15 views

CVE-2024-5619

Authorization Bypass Through User-Controlled Key vulnerability in PruvaSoft Informatics Apinizer Management Console allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Apinizer Management Console: before 2024.05.1...

9.6CVSS0.00363EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/07/18 5:15 p.m.3 views

CVE-2024-5618

Incorrect Permission Assignment for Critical Resource vulnerability in PruvaSoft Informatics Apinizer Management Console allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Apinizer Management Console: before 2024.05.1...

9.9CVSS5.8AI score0.00434EPSS
Exploits0References3
Rows per page
Query Builder