Lucene search
K

433 matches found

Cvelist
Cvelist
added 2025/04/08 2:0 a.m.26 views

CVE-2025-3400 ESAFENET CDG UnChkMailApplication.jsp sql injection

A vulnerability, which was classified as critical, was found in ESAFENET CDG 5.6.3.154.20520250114. This affects an unknown part of the file /client/UnChkMailApplication.jsp. The manipulation of the argument typename leads to sql injection. It is possible to initiate the attack remotely. The...

7.5CVSS0.00613EPSS
Exploits1References4
CVE
CVE
added 2025/04/08 2:0 a.m.56 views

CVE-2025-3400

CVE-2025-3400 affects ESAFENET CDG 5.6.3.154.205_20250114. The vulnerability resides in the file /client/UnChkMailApplication.jsp, where manipulating the parameter typename enables a remote SQL injection. Exploitation is possible without authentication and has been publicly disclosed. Multiple so...

9.8CVSS7.4AI score0.00613EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/08 2:0 a.m.8 views

CVE-2025-3399 ESAFENET CDG updateNotice.jsp sql injection

A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5.6.3.154.20520250114. Affected by this issue is some unknown functionality of the file /pubinfo/updateNotice.jsp. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The...

7.5CVSS7.4AI score0.00613EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/04/08 2:0 a.m.30 views

CVE-2025-3399 ESAFENET CDG updateNotice.jsp sql injection

A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5.6.3.154.20520250114. Affected by this issue is some unknown functionality of the file /pubinfo/updateNotice.jsp. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The...

7.5CVSS0.00613EPSS
Exploits1References4
CVE
CVE
added 2025/04/08 2:0 a.m.56 views

CVE-2025-3399

CVE-2025-3399 affects ESAFENET CDG 5.6.3.154.205_20250114. The vulnerability arises from improper handling of the ID parameter in /pubinfo/updateNotice.jsp, where manipulating ID leads to SQL injection. The issue is exploitable remotely and publicly disclosed; vendor response is noted as lacking ...

9.8CVSS7.4AI score0.00613EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.5 views

PT-2025-15326 · Unknown · Esafenet Cdg

Name of the Vulnerable Software and Affected Versions: ESAFENET CDG version 5.6.3.154.205 20250114 Description: A critical issue has been found, affecting unknown code in the file /parameter/getLimitIPList.jsp. The manipulation of the noticeId argument leads to SQL injection. This issue can be...

9.8CVSS7.5AI score0.00613EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.5 views

EsafeNet CDG 安全漏洞

EsafeNet CDG is a document security management system from EsafeNet, China. A security vulnerability exists in EsafeNet CDG version 5.6.3.154.20520250114, which stems from an incorrect operation of the parameter noticeId that can lead to SQL injection...

9.8CVSS7.8AI score0.00613EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.7 views

PT-2025-15323 · Unknown · Esafenet Cdg

Name of the Vulnerable Software and Affected Versions: ESAFENET CDG version 5.6.3.154.205 20250114 Description: A critical issue was found in the file /client/UnChkMailApplication.jsp, allowing for SQL injection through the manipulation of the typename argument. This can be initiated remotely. Th...

9.8CVSS7.4AI score0.00613EPSS
Exploits1References8
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.5 views

EsafeNet CDG 安全漏洞

EsafeNet CDG is a document security management system from EsafeNet, China. A security vulnerability exists in EsafeNet CDG version 5.6.3.154.20520250114, which stems from an incorrect manipulation of the parameter typename that can lead to SQL injection...

9.8CVSS7.7AI score0.00613EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.7 views

PT-2025-15322 · Unknown · Esafenet Cdg

Name of the Vulnerable Software and Affected Versions: ESAFENET CDG version 5.6.3.154.205 20250114 Description: A critical issue has been found, affecting some unknown functionality of the file /pubinfo/updateNotice.jsp. The manipulation of the ID argument leads to SQL injection. The attack can b...

9.8CVSS7.6AI score0.00613EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2025/04/02 4:55 p.m.21 views

CVE-2025-3003

A vulnerability, which was classified as critical, was found in ESAFENET CDG 3. Affected is an unknown function of the file /CDGServer3/UserAjax. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...

6.5CVSS7.5AI score0.00301EPSS
Exploits0References1
NVD
NVD
added 2025/03/31 5:15 p.m.14 views

CVE-2025-3003

A vulnerability, which was classified as critical, was found in ESAFENET CDG 3. Affected is an unknown function of the file /CDGServer3/UserAjax. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...

6.5CVSS0.00301EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/03/31 4:31 p.m.22 views

CVE-2025-3003 ESAFENET CDG UserAjax sql injection

A vulnerability, which was classified as critical, was found in ESAFENET CDG 3. Affected is an unknown function of the file /CDGServer3/UserAjax. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...

6.5CVSS0.00301EPSS
Exploits0References4
CVE
CVE
added 2025/03/31 4:31 p.m.59 views

CVE-2025-3003

ESAFENET CDG 3 is affected by a SQL injection vulnerability in an unknown function of the file /CDGServer3/UserAjax, caused by manipulation of the Username parameter. The vulnerability can be exploited remotely; disclosures exist and public exploitation is possible. All sources consistently descr...

6.5CVSS6.7AI score0.00301EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/03/31 4:31 p.m.6 views

CVE-2025-3003 ESAFENET CDG UserAjax sql injection

A vulnerability, which was classified as critical, was found in ESAFENET CDG 3. Affected is an unknown function of the file /CDGServer3/UserAjax. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...

6.5CVSS7.2AI score0.00301EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/03/31 12:0 a.m.4 views

EsafeNet CDG 安全漏洞

EsafeNet CDG is a document security management system from EsafeNet. A security vulnerability exists in EsafeNet CDG version 3, which stems from an incorrect operation of the parameter Username that can lead to SQL injection...

6.5CVSS6.9AI score0.00301EPSS
Exploits0References1
NVD
NVD
added 2025/03/28 9:15 p.m.9 views

CVE-2025-2927

A vulnerability was found in ESAFENET CDG 5.6.3.154.205. It has been classified as critical. Affected is an unknown function of the file /parameter/getFileTypeList.jsp. The manipulation of the argument typename leads to sql injection. It is possible to launch the attack remotely. The exploit has...

9.8CVSS0.00574EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/03/28 8:31 p.m.29 views

CVE-2025-2927 ESAFENET CDG getFileTypeList.jsp sql injection

A vulnerability was found in ESAFENET CDG 5.6.3.154.205. It has been classified as critical. Affected is an unknown function of the file /parameter/getFileTypeList.jsp. The manipulation of the argument typename leads to sql injection. It is possible to launch the attack remotely. The exploit has...

7.5CVSS0.00574EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/03/28 8:31 p.m.11 views

CVE-2025-2927 ESAFENET CDG getFileTypeList.jsp sql injection

A vulnerability was found in ESAFENET CDG 5.6.3.154.205. It has been classified as critical. Affected is an unknown function of the file /parameter/getFileTypeList.jsp. The manipulation of the argument typename leads to sql injection. It is possible to launch the attack remotely. The exploit has...

7.5CVSS7.2AI score0.00574EPSS
Exploits1References4
CVE
CVE
added 2025/03/28 8:31 p.m.101 views

CVE-2025-2927

CVE-2025-2927 affects ESAFENET CDG 5.6.3.154.205. The vulnerability is an SQL injection in the unknown function handling the file path /parameter/getFileTypeList.jsp, triggered by manipulating the typename parameter. It is exploitable remotely and cited as critical based on multiple sources. Expl...

9.8CVSS7.4AI score0.00574EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder