Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Positive Technologies
Positive Technologiesadded 2025/04/07 12:0 a.m.3 views

PT-2025-15238 · Ruoyi · Ruoyi

Name of the Vulnerable Software and Affected Versions: RUoYi version 4.8.0 Description: An issue in RUoYi allows a remote attacker to escalate privileges via the postID parameter in the edit method. Recommendations: For RUoYi version 4.8.0, consider disabling the edit method until a patch is...

6.7CVSS7.3AI score0.0072EPSS
Exploits1References9
Positive Technologies
Positive Technologiesadded 2025/01/21 12:0 a.m.1 views

PT-2025-3375 · Unknown · Phpgurukul Hospital Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Hospital Management System version 4.0 Description: The issue concerns a Cross Site Scripting XSS vulnerability in the /edit-profile.php file, specifically via the address parameter. This allows an attacker to inject malicious...

4.2CVSS6.2AI score0.00075EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2024/06/18 12:0 a.m.2 views

PT-2024-37393 · Unknown · Simple Online Hotel Reservation System

Name of the Vulnerable Software and Affected Versions: Simple Online Hotel Reservation System version 1.0 Description: A critical vulnerability has been found in the Simple Online Hotel Reservation System, affecting some unknown functionality of the file edit room.php. The manipulation of the pho...

9.8CVSS7.2AI score0.00125EPSS
Exploits1References8
Positive Technologies
Positive Technologiesadded 2024/06/13 12:0 a.m.2 views

PT-2024-25170 · Gunet · Gunet Openeclass E-Learning Platform

Name of the Vulnerable Software and Affected Versions: GUnet OpenEclass E-learning Platform versions 3.15 and before Description: The issue is a cross-site scripting XSS vulnerability that allows an authenticated privileged attacker to execute arbitrary code. This can be achieved via the title an...

6CVSS6.2AI score0.00147EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2024/02/08 12:0 a.m.2 views

PT-2024-20278 · Unknown · Cotonti Cms

Name of the Vulnerable Software and Affected Versions: Cotonti CMS version 0.9.24 Description: A stored cross-site scripting XSS vulnerability in the Edit Page function allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload. Recommendations: For Cotonti CMS...

5.4CVSS5.2AI score0.00226EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2022/10/11 12:0 a.m.2 views

PT-2022-26324 · Unknown · Merchandise Online Store

Name of the Vulnerable Software and Affected Versions: Merchandise Online Store version 1.0 Description: A Stored XSS issue allows the injection of arbitrary JavaScript in the edit account form. Recommendations: For version 1.0, update the edit account form to properly sanitize user input and...

5.4CVSS5.5AI score0.00224EPSS
Exploits0References2
Rows per page
Query Builder