CVE-2025-49987

Missing Authorization vulnerability in WPFactory CRM ERP Business Solution crm-erp-business-solution allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CRM ERP Business Solution: from n/a through = 1.13...

CVE-2025-49987 WordPress CRM ERP Business Solution plugin <= 1.13 - Broken Access Control Vulnerability

Missing Authorization vulnerability in WPFactory CRM ERP Business Solution crm-erp-business-solution allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CRM ERP Business Solution: from n/a through = 1.13...

PT-2025-26355 · Wpfactory · Wpfactory Crm Erp Business Solution

Name of the Vulnerable Software and Affected Versions: WPFactory CRM ERP Business Solution versions 1.13 and earlier Description: The issue is related to a Missing Authorization vulnerability, allowing exploitation of incorrectly configured access control security levels. Recommendations: For...

CVE-2024-41714

A vulnerability in the Web Interface component of Mitel MiCollab through 9.8 SP1 9.8.1.5 and MiVoice Business Solution Virtual Instance MiVB SVI through 1.0.0.27 could allow an authenticated attacker to conduct a command injection attack, due to insufficient parameter sanitization. A successful...

CVE-2024-35314

Affects Mitel MiCollab Desktop Client (versions ≤ 9.7.1.110) and MiVoice Business Solution Virtual Instance (MiVB SVI ≤ 1.0.0.25). The vulnerability is a command injection caused by insufficient parameter sanitization, enabling an unauthenticated attacker to execute arbitrary scripts with user in...

CVE-2024-35314

A vulnerability in the Desktop Client of Mitel MiCollab through 9.7.1.110, and MiVoice Business Solution Virtual Instance MiVB SVI 1.0.0.25, could allow an unauthenticated attacker to conduct a command injection attack due to insufficient parameter sanitization. A successful exploit requires user...

CVE-2024-35315

Mitel MiCollab Desktop Client (versions up to 9.7.1.110) and MiVoice Business Solution Virtual Instance (MiVB SVI) 1.0.0.25 contain a privilege-escalation flaw due to improper file validation. An authenticated, local attacker could execute arbitrary code with elevated privileges. MITRE-like impac...

CVE-2024-35315

A vulnerability in the Desktop Client of Mitel MiCollab through 9.7.1.110, and MiVoice Business Solution Virtual Instance MiVB SVI 1.0.0.25, could allow an authenticated attacker to conduct a privilege escalation attack due to improper file validation. A successful exploit could allow an attacker...

CVE-2024-35315

A vulnerability in the Desktop Client of Mitel MiCollab through 9.7.1.110, and MiVoice Business Solution Virtual Instance MiVB SVI 1.0.0.25, could allow an authenticated attacker to conduct a privilege escalation attack due to improper file validation. A successful exploit could allow an attacker...

CVE-2024-41714

A vulnerability in the Web Interface component of Mitel MiCollab through 9.8 SP1 9.8.1.5 and MiVoice Business Solution Virtual Instance MiVB SVI through 1.0.0.27 could allow an authenticated attacker to conduct a command injection attack, due to insufficient parameter sanitization. A successful...

PT-2024-7493 · Mitel · Mivoice Business Solution Virtual Instance +1

Name of the Vulnerable Software and Affected Versions: Mitel MiCollab versions through 9.8 SP1 9.8.1.5 MiVoice Business Solution Virtual Instance MiVB SVI versions through 1.0.0.27 Description: A vulnerability in the Web Interface component could allow an authenticated attacker to conduct a comma...

IBM Curam Social Program Management会话固定漏洞

IBM Curam Social Program Management is an IBM business and technology solution that provides pre-built health and social program components, business processes, toolsets and interfaces on top of a dynamically configurable architecture. The vulnerability stems from the failure of the program to...

Wallarm NG WAF is ranked as a “High Performer” by G2, Spring 2021!

We are proud to announce that Wallarm NG WAF was ranked as a “High performer” by G2 in the Web Application Firewall category. This award from the G2 platform confirms that our solution is highly rated by current verified Wallarm WAF users, who left unbiased reviews and answers to WAF-related...

guanxiCRM Business Solution <= 0.9.1 - Remote File Include Vulnerability

No description provided by source. ============================================================================================== guanxiCRM = v0.9.1 rootpath Remote File Inclusion Exploit =============================================================================================== Critical Leve...

Compton Business Solution (FCKeditor) File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title:Compton Business Solution FCKeditor File Upload Vulnerability Date: 18/7/2011 Author: Angel Injection home Page: http://www.club-h.co.cc Email: Angel-InjectionathotmailDotcom Vendor or Software Link:www.compton.in Version: N/A...

iScripts easybiller 1.1 - SQL Injection

iScripts easybiller 1.1 - SQL Injection Title:iScripts easybiller v1.1 sqli vulnerability Author: Sid3^effects Published: 2010-06-05 price:$147 email:[email protected] vendor: iScripts url : http://www.iscripts.com/easybiller/ google dork : Powered by iScripts EasyBiller ooooo .oooooo. oooooo...

Remote file inclusion

PHP remote file inclusion vulnerability in modules/webmail2/inc/rfc822.php in guanxiCRM Business Solution 0.9.1 allows remote attackers to execute arbitrary PHP code via a URL in the webmail2incdir parameter...

CVE-2007-5096

CVE-2007-5096 concerns a PHP remote file inclusion vulnerability in guanxiCRM Business Solution 0.9.1, specifically in modules/webmail2/inc/rfc822.php. The flaw allows an attacker to cause arbitrary PHP code execution by supplying a URL in the webmail2_inc_dir parameter. Documents consistently ci...

CVE-2007-5096

PHP remote file inclusion vulnerability in modules/webmail2/inc/rfc822.php in guanxiCRM Business Solution 0.9.1 allows remote attackers to execute arbitrary PHP code via a URL in the webmail2incdir parameter...

guanxiCRM Business Solution &lt;= 0.9.1 Remote File Include Vulnerability

No description provided by source. ============================================================================================== guanxiCRM = v0.9.1 rootpath Remote File Inclusion Exploit =============================================================================================== Critical Leve...