39 matches found
CVE-2022-35554
Multiple reflected XSS vulnerabilities occur when handling error message of BPC SmartVista version 3.28.0 allowing an attacker to execute javascript code at client side...
EUVD-2018-7084
Malware in sbrugna...
EUVD-2018-7085
Malware in sbrugna...
EUVD-2018-7086
Malware in sbrugna...
EUVD-2017-7544
Malware in sbrugna...
EUVD-2022-38440
Malicious code in bioql PyPI...
EUVD-2023-12121
Malicious code in bioql PyPI...
SUSE CVE-2021-47489
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix even more out of bound writes from debugfs CVE-2021-42327 was fixed by: commit f23750b5b3d98653b31d4469592935ef6364ad67 Author: Thelford Williams Date: Wed Oct 13 16:04:13 2021 -0400 drm/amdgpu: fix out of bounds...
DEBIAN-CVE-2021-47489
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix even more out of bound writes from debugfs CVE-2021-42327 was fixed by: commit f23750b5b3d98653b31d4469592935ef6364ad67 Author: Thelford Williams Date: Wed Oct 13 16:04:13 2021 -0400 drm/amdgpu: fix out of bounds...
CVE-2023-23851
SAP Business Planning and Consolidation - versions 200, 300, allows an attacker with business authorization to upload any files including web pages without the proper file format validation. If other users visit the uploaded malicious web page, the attacker may perform actions on behalf of the...
CVE-2023-23851
SAP Business Planning and Consolidation versions 200 and 300 are affected by a vulnerability where an attacker with business authorization can upload arbitrary files (including web pages) due to insufficient file format validation. If other users visit the uploaded page, the attacker may perform ...
SAP BPC MS SQL Injection Vulnerability
SAP BPC MS is a business planning and consolidation application from SAP Germany that provides planning, budgeting, forecasting, and financial consolidation functions. SAP BPC MS version 10.0 810 contains a SQL injection vulnerability that stems from the application's lack of validation of...
CVE-2023-0016
SAP BPC MS 10.0 - version 810, allows an unauthorized attacker to execute crafted database queries. The exploitation of this issue could lead to SQL injection vulnerability and could allow an attacker to access, modify, and/or delete data from the backend database...
Sql injection
SAP BPC MS 10.0 - version 810, allows an unauthorized attacker to execute crafted database queries. The exploitation of this issue could lead to SQL injection vulnerability and could allow an attacker to access, modify, and/or delete data from the backend database...
CVE-2023-0016
SAP BPC MS 10.0 version 810 contains a SQL injection vulnerability. The issue arises from lack of validation of externally entered SQL statements, enabling an unauthenticated attacker to craft queries that could be executed against the backend database. Reported impacts include unauthorized acces...
CVE-2022-35554
Multiple reflected XSS vulnerabilities occur when handling error message of BPC SmartVista version 3.28.0 allowing an attacker to execute javascript code at client side...
CVE-2022-35554
Multiple reflected XSS vulnerabilities occur when handling error message of BPC SmartVista version 3.28.0 allowing an attacker to execute javascript code at client side...
CVE-2022-35554
CVE-2022-35554 affects BPC SmartVista v3.28.0. The issue is reflected XSS in error message handling that allows a remote attacker to execute JavaScript in the client browser. CVSSv3.1 base score 6.1 (Network, Low attack complexity, User interaction required, Confidentiality/Integrity impact Low)....
CVE-2022-35554
Multiple reflected XSS vulnerabilities occur when handling error message of BPC SmartVista version 3.28.0 allowing an attacker to execute javascript code at client side...
BPC SmartVista 跨站脚本漏洞
BPC SmartVista is an end-to-end solution for electronic payment systems. A security vulnerability exists in BPC SmartVista version 3.28.0, which stems from its handling of error messages and allows an attacker to execute javascript code on the client side...