88 matches found
Bold Workplanner Insecure Direct Object Reference Vulnerability (CNVD-2025-24044)
Bold Workplanner is an enterprise software for human resource management from the Spanish company Bold Workplanner. Bold Workplanner suffers from an insecure direct object reference vulnerability that can be exploited by an attacker to access plan counter details using an unauthorized internal...
Bold Workplanner Insecure Direct Object Reference Vulnerability (CNVD-2025-24042)
Bold Workplanner is an enterprise software for human resource management from the Spanish company Bold Workplanner. Bold Workplanner suffers from an insecure direct object reference vulnerability that stems from the misuse of the Generic Query Web Service, no details of the vulnerability are...
Bold Workplanner Insecure Direct Object Reference Vulnerability (CNVD-2025-24041)
Bold Workplanner is an enterprise software for human resource management from the Spanish company Bold Workplanner. Bold Workplanner suffers from an insecure direct object reference vulnerability that can be exploited by an attacker to access basic contract details using an unauthorized internal...
Bold Workplanner Insecure Direct Object Reference Vulnerability (CNVD-2025-24048)
Bold Workplanner is an enterprise software for human resource management from the Spanish company Bold Workplanner. Bold Workplanner suffers from an insecure direct object reference vulnerability that can be exploited by an attacker to access functional contract details using an unauthorized...
Bold Workplanner Insecure Direct Object Reference Vulnerability (CNVD-2025-24046)
Bold Workplanner is an enterprise software for human resource management from the Spanish company Bold Workplanner. Bold Workplanner suffers from an insecure direct object reference vulnerability that can be exploited by an attacker to access calendar details using an unauthorized internal...
Bold Workplanner Insecure Direct Object Reference Vulnerability (CNVD-2025-24047)
Bold Workplanner is an enterprise software for human resource management from the Spanish company Bold Workplanner. Bold Workplanner suffers from an insecure direct object reference vulnerability that can be exploited by an attacker to access permission lists using unauthorized internal identifie...
Bold Workplanner Insecure Direct Object Reference Vulnerability (CNVD-2025-24043)
Bold Workplanner is an enterprise software for human resource management from the Spanish company Bold Workplanner. Bold Workplanner suffers from an insecure direct object reference vulnerability that can be exploited by an attacker to access basic employee details using an unauthorized internal...
Bold Workplanner Insecure Direct Object Reference Vulnerability (CNVD-2025-24045)
Bold Workplanner is an enterprise software for human resource management from the Spanish company Bold Workplanner. Bold Workplanner suffers from an insecure direct object reference vulnerability that can be exploited by an attacker to access the date of current contract details using an...
EUVD-2025-31719
Malicious code in bioql PyPI...
EUVD-2025-31718
Malicious code in bioql PyPI...
EUVD-2025-31725
Malicious code in bioql PyPI...
EUVD-2025-31721
Malicious code in bioql PyPI...
EUVD-2025-31722
Malicious code in bioql PyPI...
EUVD-2025-31724
Malicious code in bioql PyPI...
EUVD-2025-31717
Malicious code in bioql PyPI...
EUVD-2025-31723
Malicious code in bioql PyPI...
EUVD-2025-31720
Malicious code in bioql PyPI...
CVE-2025-41095
Insecure Direct Object Reference IDOR vulnerability in BOLD Workplanner in versions prior to 2.5.25 4935b438f9b, consisting of a lack of adequate validation of user input, allowing an authenticated user to access to planning counter details using unauthorised internal identifiers...
CVE-2025-41091
Insecure Direct Object Reference IDOR vulnerability in BOLD Workplanner in versions prior to 2.5.25 4935b438f9b, consisting of a lack of adequate validation of user input, allowing an authenticated user to access to calendar details using unauthorised internal identifiers...
CVE-2025-41096
Insecure Direct Object Reference IDOR vulnerability in BOLD Workplanner in versions prior to 2.5.25 4935b438f9b, consisting of a lack of adequate validation of user input, allowing an authenticated user to access to the dates of the current contract details using unauthorised internal identifiers...