Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-43255

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00552EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.19 views

EUVD-2025-6279

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00421EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 7:10 a.m.13 views

CVE-2024-51182

HTML Injection vulnerability in Celk Sistemas Celk Saude v.3.1.252.1 allows a remote attacker to inject arbitrary HTML code via the "erro" parameter...

6.1CVSS6.4AI score0.00316EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/18 6:28 p.m.26 views

CVE-2024-48761

Reflected XSS vulnerability in Celk Sistemas Celk Saude v.3.1.252.1 allows a remote attacker to inject arbitrary JavaScript code via the "erro" parameter...

8.8CVSS6.2AI score0.00552EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/15 8:12 a.m.18 views

CVE-2024-55198

User Enumeration via Discrepancies in Error Messages in the Celk Sistemas Celk Saude v.3.1.252.1 password recovery functionality which allows a remote attacker to enumerate users through discrepancies in the responses...

5.3CVSS7AI score0.00421EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/15 2:13 a.m.4 views

CVE-2024-55199

A Stored Cross Site Scripting XSS vulnerability in Celk Sistemas Celk Saude v.3.1.252.1 allows a remote attacker to store JavaScript code inside a PDF file through the file upload feature. When the file is rendered, the injected code is executed on the user's browser...

5.4CVSS5.8AI score0.00284EPSS
Exploits1References1
NVD
NVD
added 2025/03/13 3:15 p.m.27 views

CVE-2024-55198

User Enumeration via Discrepancies in Error Messages in the Celk Sistemas Celk Saude v.3.1.252.1 password recovery functionality which allows a remote attacker to enumerate users through discrepancies in the responses...

5.3CVSS0.00421EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/03/13 12:0 a.m.31 views

CVE-2024-55198

User Enumeration via Discrepancies in Error Messages in the Celk Sistemas Celk Saude v.3.1.252.1 password recovery functionality which allows a remote attacker to enumerate users through discrepancies in the responses...

0.00421EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/03/13 12:0 a.m.7 views

PT-2025-11185 · Celk Sistemas · Celk Saude

Name of the Vulnerable Software and Affected Versions: Celk Sistemas Celk Saude version 3.1.252.1 Description: The issue concerns user enumeration via discrepancies in error messages in the password recovery functionality, allowing a remote attacker to enumerate users through different responses...

5.3CVSS6.4AI score0.00421EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2025/03/13 12:0 a.m.7 views

CVE-2024-55198

User Enumeration via Discrepancies in Error Messages in the Celk Sistemas Celk Saude v.3.1.252.1 password recovery functionality which allows a remote attacker to enumerate users through discrepancies in the responses...

6.7AI score0.00421EPSS
Exploits1References2
NVD
NVD
added 2025/03/10 6:15 p.m.7 views

CVE-2024-55199

A Stored Cross Site Scripting XSS vulnerability in Celk Sistemas Celk Saude v.3.1.252.1 allows a remote attacker to store JavaScript code inside a PDF file through the file upload feature. When the file is rendered, the injected code is executed on the user's browser...

5.4CVSS0.00284EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/03/10 12:0 a.m.10 views

CVE-2024-55199

A Stored Cross Site Scripting XSS vulnerability in Celk Sistemas Celk Saude v.3.1.252.1 allows a remote attacker to store JavaScript code inside a PDF file through the file upload feature. When the file is rendered, the injected code is executed on the user's browser...

0.00284EPSS
Exploits1References2
CVE
CVE
added 2025/03/10 12:0 a.m.46 views

CVE-2024-55199

CVE-2024-55199 describes a Stored XSS in Celk Sistemas Celk Saude v3.1.252.1. The vulnerability allows an attacker to embed JavaScript inside a PDF uploaded via the file-upload feature; when the PDF is rendered, the script executes in the user’s browser. Affected product/version: Celk Saude v3.1....

5.4CVSS6AI score0.00284EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/03/10 12:0 a.m.3 views

CVE-2024-55199

A Stored Cross Site Scripting XSS vulnerability in Celk Sistemas Celk Saude v.3.1.252.1 allows a remote attacker to store JavaScript code inside a PDF file through the file upload feature. When the file is rendered, the injected code is executed on the user's browser...

6AI score0.00284EPSS
Exploits1References2
OSV
OSV
added 2025/01/29 10:15 p.m.6 views

CVE-2024-51182

HTML Injection vulnerability in Celk Sistemas Celk Saude v.3.1.252.1 allows a remote attacker to inject arbitrary HTML code via the "erro" parameter...

6.1CVSS6AI score0.00316EPSS
Exploits1References1
NVD
NVD
added 2025/01/29 10:15 p.m.22 views

CVE-2024-51182

HTML Injection vulnerability in Celk Sistemas Celk Saude v.3.1.252.1 allows a remote attacker to inject arbitrary HTML code via the "erro" parameter...

6.1CVSS0.00316EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/29 12:0 a.m.5 views

Celk Sistemas Celk Saude 安全漏洞

Celk Sistemas Celk Saude is a health sector management software from Celk Sistemas, Brazil. A security vulnerability exists in Celk Sistemas Celk Saude version 3.1.252.1, which stems from improper validation or cleanup of erro parameters, resulting in vulnerability to injection attacks...

8.8CVSS7AI score0.00552EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/01/29 12:0 a.m.7 views

CVE-2024-51182

HTML Injection vulnerability in Celk Sistemas Celk Saude v.3.1.252.1 allows a remote attacker to inject arbitrary HTML code via the "erro" parameter...

6.5AI score0.00316EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/29 12:0 a.m.24 views

CVE-2024-51182

HTML Injection vulnerability in Celk Sistemas Celk Saude v.3.1.252.1 allows a remote attacker to inject arbitrary HTML code via the "erro" parameter...

0.00316EPSS
Exploits1References1
Rows per page
Query Builder