Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2009-1623

Malware in sbrugna...

10CVSS6.1AI score0.05244EPSS
Exploits4References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-55022

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00299EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/21 8:28 p.m.9 views

CVE-2009-1628

Stack-based buffer overflow in mnet.exe in Unisys Business Information Server BIS 10 and 10.1 on Windows allows remote attackers to execute arbitrary code via a crafted TCP packet...

10CVSS8.3AI score0.05244EPSS
Exploits4References1
Cvelist
Cvelist
added 2024/02/13 6:2 p.m.33 views

CVE-2024-20695 Skype for Business Information Disclosure Vulnerability

...

5.7CVSS6.3AI score0.0056EPSS
Exploits0References1
CNVD
CNVD
added 2023/07/13 12:0 a.m.31 views

Microsoft SharePoint Server Remote Code Execution Vulnerability (CNVD-2023-72195)

Microsoft SharePoint Server is an enterprise business collaboration platform from Microsoft. The platform is used to consolidate business information and enable sharing of work, collaborating with others, organizing projects and workgroups, and searching for people and information. A remote code...

8.8CVSS8.1AI score0.05155EPSS
Exploits0References1
CNVD
CNVD
added 2023/05/26 12:0 a.m.19 views

Odoo Access Control Issue Vulnerability

Odoo is an Enterprise Resource Planning ERP and Customer Relationship Management CRM system from Odoo Belgium. The system is developed in Python language, PostgreSQL as the database, and includes modules for sales management, inventory management, financial management and so on. An access control...

5.3CVSS6.8AI score0.00465EPSS
Exploits0References1
CNVD
CNVD
added 2022/12/19 12:0 a.m.45 views

Microsoft SharePoint Server Remote Code Execution Vulnerability (CNVD-2022-89421)

Microsoft SharePoint is an enterprise business collaboration platform from Microsoft Corporation USA. The platform is used to consolidate business information and enable sharing of work, collaborating with others, organizing projects and workgroups, and searching for people and information.A remo...

8.8CVSS1.6AI score0.82081EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/07/21 3:37 p.m.24 views

CVE-2022-30628 Supersmart.me – Walk Through access to business information without authentication

It was possible to download all receipts without authentication. Must first access the API https://XXXX.supersmart.me/services/v4/customer/signin to get a TOKEN. Then you can then access the API that provides invoice images based on the URL...

4.8CVSS5.7AI score0.00177EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/07/21 12:0 a.m.4 views

Supersmart 安全漏洞

Supersmart is an artificially intelligent automated checkout for brick-and-mortar retail by Israel's Supersmart. Supersmart has a security vulnerability that stems from accessing business information without authentication...

5.5CVSS5.7AI score0.00177EPSS
Exploits0References2
CNVD
CNVD
added 2022/02/10 12:0 a.m.16 views

Microsoft SharePoint Server Remote Code Execution Vulnerability (CNVD-2022-22712)

Microsoft SharePoint is an enterprise business collaboration platform from Microsoft Corporation USA. The platform is used to consolidate business information and enable sharing of work, collaborating with others, organizing projects and workgroups, and searching for people and information. remot...

8.8CVSS1.9AI score0.16825EPSS
Exploits0References1
CNVD
CNVD
added 2021/12/19 12:0 a.m.35 views

Microsoft SharePoint Server Remote Code Execution Vulnerability (CNVD-2021-101710)

Microsoft SharePoint is an enterprise business collaboration platform from Microsoft Corporation USA. The platform is used to consolidate business information and enable sharing of work, collaborating with others, organizing projects and workgroups, and searching for people and information.A remo...

7.2CVSS1.6AI score0.02182EPSS
Exploits0References1
Trend Micro Simply Security
Trend Micro Simply Security
added 2021/06/09 12:0 a.m.12 views

#LetsTalkSecurity: Transformational Security

Let's Talk Security: Season 02 // Episode 01: Host, Rik Ferguson, interviews Business Information Security Officer from S Global Ratings, Alyssa Miller. Together they discuss transformational security...

1AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/05/06 4:0 p.m.209 views

Business email compromise campaign targets wide range of orgs with gift card scam

Cybercriminals continue to target businesses to trick recipients into approving payments, transferring funds, or, in this case, purchasing gift cards. This kind of email attack is called business email compromise BEC—a damaging form of phishing designed to gain access to critical business...

Exploits0
Hacker One
Hacker One
added 2021/05/02 1:44 p.m.16 views

Acronis: IDOR on www.acronis.com API lead to steal private business user information

Summary Hi acronis team, i found an endpoint : www.acronis.com/en-us/api/v1/lead/id:929-HVV-335&token:mch-acronis.com- that is vulnerable to IDOR. with this vulnerability an attacker can steal private info such as company name, user name and surname, telephone number etc... Steps To Reproduce 1...

1.3AI score
Exploits0
CNVD
CNVD
added 2021/01/14 12:0 a.m.2 views

SAP Business Information Warehouse SQL Injection Vulnerability

SAP Business Information Warehouse SAP BW is a data warehouse for collecting and tabulating information in an enterprise environment from SAP Germany. The software is an enterprise-wide information center for data analysis from R / 3 and other business applications, including databases and extern...

6.5CVSS7.7AI score0.01895EPSS
Exploits2References1
CNNVD
CNNVD
added 2021/01/12 12:0 a.m.7 views

SAP Business Information Warehouse SQL Injection Vulnerability

SAP Business Information Warehouse SAP BW is a data warehouse for collecting and tabulating information in an enterprise environment from SAP Germany. The software is an enterprise-wide information center for data analysis from R / 3 and other business applications, including databases and extern...

9.9CVSS7.3AI score0.0367EPSS
Exploits2References9
Wired Threat Level
Wired Threat Level
added 2019/03/07 10:49 p.m.68 views

An Email Marketing Company Left 809 Million Records Exposed Online

A exposed database belonging to Verifications.io contained both personal and business information, including 763 million unique email addresses...

2.2AI score
Exploits0
Hacker One
Hacker One
added 2017/05/12 6:5 a.m.17 views

Yelp: ClickJacking in editing business name

SUMMARY: Hope you guys are doing great. I found clickjacking vulnerability while updating business page.One of the endpoints which is vulnerable to clickjacking is https://www.yelp.com/bizattribute?bizid=RIyHYSf3lyJcFb4El9T4tQ . Clickjacking User Interface redress attack, UI redress attack, UI...

6.6AI score
Exploits0
Richard Bejtlich's blog
Richard Bejtlich's blog
added 2015/10/19 3:37 p.m.10 views

South Korea Signs Up to Cyber Theft Pledge

On Friday the Obama administration secured its second win toward establishing a new norm in cyberspace. The Joint Fact Sheet published by the White House includes the following language: "no country should conduct or knowingly support cyber-enabled theft of intellectual property, trade secrets, o...

6.8AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2010/01/31 12:0 a.m.43 views

Unisys Business Information Server Stack Buffer Overflow (CVE-2009-1628)

The Unisys Business Information Server is a business information management solution that provides data access, analysis and reporting in an open, enterprise-wide computing environment. Business Information Server transforms corporate data into information that is made available throughout the...

10CVSS7.7AI score0.05244EPSS
Exploits4
Rows per page
Query Builder