3 matches found
CVE-2025-69752
An issue in the "My Details" user profile functionality of Ideagen Q-Pulse 7.1.0.32 allows an authenticated user to view other users' profile information by modifying the objectKey HTTP parameter in the My Details page URL...
Zurmo cross-site scripting vulnerability (CNVD-2019-07202)
Zurmo is the United States Zurmo company's set of open source PHP-based customer relationship management system CRM. A cross-site scripting vulnerability exists in Zurmo version 3.2.4 Stable. A remote attacker can exploit this vulnerability to execute injected malicious script with the help of th...
EMC Secure Remote Services Virtual Edition SQL Injection Vulnerability
An SQL injection vulnerability was found in EMC Secure Remote Services Virtual Edition ESRS VE that allows an attacker to retrieve arbitrary data from the application, interfere with its logic, or execute commands on the database server itself...