11 matches found
EUVD-2015-4071
Malware in sbrugna...
EUVD-2024-48215
Malicious code in bioql PyPI...
CVE-2024-7269
Improper Neutralization of Input During Web Page Generation vulnerability in "Update of Personal Details" form in ConnX ESP HR Management allows Stored XSS attack. An attacker might inject a script to be run in user's browser. After multiple attempts to contact the vendor we did not receive any...
CVE-2024-7269
Improper Neutralization of Input During Web Page Generation vulnerability in "Update of Personal Details" form in ConnX ESP HR Management allows Stored XSS attack. An attacker might inject a script to be run in user's browser. After multiple attempts to contact the vendor we did not receive any...
CVE-2024-7269 Stored XSS in ConnX ESP HR Management
Improper Neutralization of Input During Web Page Generation vulnerability in "Update of Personal Details" form in ConnX ESP HR Management allows Stored XSS attack. An attacker might inject a script to be run in user's browser. After multiple attempts to contact the vendor we did not receive any...
CVE-2024-7269
CVE-2024-7269 pertains to ConnX ESP HR Management and is a Stored XSS vulnerability in the "Update of Personal Details" form. Affected are ESP HR Management versions prior to 6.6. The root cause is improper neutralization of input during web page generation, enabling an attacker to inject script ...
CVE-2024-7269 Stored XSS in ConnX ESP HR Management
Improper Neutralization of Input During Web Page Generation vulnerability in "Update of Personal Details" form in ConnX ESP HR Management allows Stored XSS attack. An attacker might inject a script to be run in user's browser. After multiple attempts to contact the vendor we did not receive any...
Sql injection
SQL injection vulnerability in ConnX ESP HR Management 4.4.0 allows remote attackers to execute arbitrary SQL commands via the ctl00$cphMainContent$txtUserName parameter to frmLogin.aspx...
CVE-2015-4043
SQL injection vulnerability in ConnX ESP HR Management 4.4.0 allows remote attackers to execute arbitrary SQL commands via the ctl00$cphMainContent$txtUserName parameter to frmLogin.aspx...
CVE-2015-4043
SQL injection vulnerability in ConnX ESP HR Management 4.4.0 allows remote attackers to execute arbitrary SQL commands via the ctl00$cphMainContent$txtUserName parameter to frmLogin.aspx...
CVE-2015-4043
CVE-2015-4043 describes a SQL injection in ConnX ESP HR Management 4.4.0. The vulnerability is exploitable remotely via the parameter ctl00$cphMainContent$txtUserName in frmLogin.aspx, allowing execution of arbitrary SQL commands. Affected component: the login page handling on ConnX ESP HR Manage...