41 matches found
EUVD-2013-5548
Malware in sbrugna...
EUVD-2023-39103
Malicious code in bioql PyPI...
EUVD-2023-39102
Malicious code in bioql PyPI...
CVE-2013-5711
Cross-site scripting XSS vulnerability in admin/walkthrough/walkthrough.php in the Design Approval System plugin before 3.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the step parameter...
Infodrom Software E-Invoice Approval System Security Breach
Infodrom Software E-Invoice Approval System is an electronic invoice approval system from Infodrom Software, Turkey. A security vulnerability exists in Infodrom Software E-Invoice Approval System version 2.1 that stems from improper protection of outbound error messages and alert signals...
CVE-2023-35066
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Infodrom Software E-Invoice Approval System allows SQL Injection.This issue affects E-Invoice Approval System: before v.20230701...
CVE-2023-35067
Plaintext Storage of a Password vulnerability in Infodrom Software E-Invoice Approval System allows Read Sensitive Strings Within an Executable. This issue affects E-Invoice Approval System: before v.20230701...
CVE-2023-35067
Plaintext Storage of a Password vulnerability in Infodrom Software E-Invoice Approval System allows Read Sensitive Strings Within an Executable. This issue affects E-Invoice Approval System: before v.20230701...
CVE-2023-35066
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Infodrom Software E-Invoice Approval System allows SQL Injection. This issue affects E-Invoice Approval System: before v.20230701...
CVE-2023-35067
Plaintext Storage of a Password vulnerability in Infodrom Software E-Invoice Approval System allows Read Sensitive Strings Within an Executable.This issue affects E-Invoice Approval System: before v.20230701...
Design/Logic Flaw
Plaintext Storage of a Password vulnerability in Infodrom Software E-Invoice Approval System allows Read Sensitive Strings Within an Executable.This issue affects E-Invoice Approval System: before v.20230701...
Sql injection
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Infodrom Software E-Invoice Approval System allows SQL Injection.This issue affects E-Invoice Approval System: before v.20230701...
CVE-2023-35066 SQLi in Infodrom Sofwares E-Invoice Approval System
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Infodrom Software E-Invoice Approval System allows SQL Injection. This issue affects E-Invoice Approval System: before v.20230701...
CVE-2023-35066 SQLi in Infodrom Sofwares E-Invoice Approval System
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Infodrom Software E-Invoice Approval System allows SQL Injection. This issue affects E-Invoice Approval System: before v.20230701...
CVE-2023-35066
Summary: CVE-2023-35066 is an SQL injection in Infodrom Software E-Invoice Approval System. The issue arises from improper neutralization of special elements in SQL commands. Affected versions: prior to v.20230701. Impact (as stated): SQL injection could compromise data confidentiality, integrity...
CVE-2023-35067
CVE-2023-35067 describes a plaintext password storage vulnerability in Infodrom Software E-Invoice Approval System. The issue allows reading sensitive strings from within an executable, effectively exposing password material if an attacker accesses the stored data. The vulnerability affects the E...
CVE-2023-35067 Plaintext Storage of a Password in Infodrom Sofwares E-Invoice Approval System
Plaintext Storage of a Password vulnerability in Infodrom Software E-Invoice Approval System allows Read Sensitive Strings Within an Executable. This issue affects E-Invoice Approval System: before v.20230701...
CVE-2023-35067 Plaintext Storage of a Password in Infodrom Sofwares E-Invoice Approval System
Plaintext Storage of a Password vulnerability in Infodrom Software E-Invoice Approval System allows Read Sensitive Strings Within an Executable. This issue affects E-Invoice Approval System: before v.20230701...
CVE-2023-37290
InfoDoc Document On-line Submission and Approval System lacks sufficient restrictions on the available tags within its HTML to PDF conversion function, and allowing an unauthenticated attackers to load remote or local resources through HTML tags such as iframe. This vulnerability allows...
CVE-2023-37290 InfoDoc Document On-line Submission and Approval System - Server-Side Request Forgery (SSRF)
InfoDoc Document On-line Submission and Approval System lacks sufficient restrictions on the available tags within its HTML to PDF conversion function, and allowing an unauthenticated attackers to load remote or local resources through HTML tags such as iframe. This vulnerability allows...