Lucene search
K

193 matches found

RedhatCVE
RedhatCVE
added 2025/09/18 3:27 p.m.4 views

CVE-2024-13174

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in E1 Informatics Web Application allows SQL Injection.This issue affects Web Application: through 20250916. NOTE: The vendor did not inform about the completion of the fixing process within the...

8.6CVSS7.4AI score0.00306EPSS
Exploits0References1
NVD
NVD
added 2025/09/16 3:15 p.m.5 views

CVE-2024-13174

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in E1 Informatics Web Application allows SQL Injection. This issue affects Web Application: through 20250916. NOTE: The vendor did not inform about the completion of the fixing process within the...

8.6CVSS0.00306EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/09/16 2:28 p.m.8 views

CVE-2024-13174

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in E1 Informatics Web Application allows SQL Injection. This issue affects Web Application: through 20250916. NOTE: The vendor did not inform about the completion of the fixing process within the...

8.6CVSS5.8AI score0.00306EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/09/16 2:28 p.m.9 views

CVE-2024-13174 SQLi in E1 Informatics' Web Application

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in E1 Informatics Web Application allows SQL Injection. This issue affects Web Application: through 20250916. NOTE: The vendor did not inform about the completion of the fixing process within the...

8.6CVSS0.00306EPSS
Exploits0References2
CVE
CVE
added 2025/09/16 2:28 p.m.13 views

CVE-2024-13174

CVE-2024-13174 is an SQL Injection in the E1 Informatics Web Application caused by improper neutralization of special elements in SQL commands. Affected versions are through 20250916. The CVSS 3.1 base score is 8.6 (High) with NETWORK attack vector, no privileges required, no user interaction. Im...

8.6CVSS5.8AI score0.00306EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/09/16 2:28 p.m.3 views

CVE-2024-13174 SQLi in E1 Informatics' Web Application

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in E1 Informatics Web Application allows SQL Injection. This issue affects Web Application: through 20250916. NOTE: The vendor did not inform about the completion of the fixing process within the...

8.6CVSS5.8AI score0.00306EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/16 12:0 a.m.4 views

PT-2025-37993

Name of the Vulnerable Software and Affected Versions: E1 Informatics Web Application versions through 20250916 Description: The E1 Informatics Web Application contains a SQL Injection issue due to improper neutralization of special elements used in an SQL command. This allows attackers to perfor...

8.6CVSS7.1AI score0.00306EPSS
Exploits0References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.2 views

Malicious code in @zalastax/nolb-_e1 (npm)

The package @zalastax/nolb-e1 was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-9956 Malicious code in @zalastax/nolb-_e1 (npm)

The package @zalastax/nolb-e1 was found to contain malicious code...

7.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/02/10 12:0 a.m.8 views

The vulnerability of component E1 in the IOT Orchestrator Security application of JD Edwards EnterpriseOne allows a perpetrator to gain unauthorized access to the device.

The vulnerability of component E1 in the JD Edwards EnterpriseOne Orchestrator Security application relates to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to the device through HTTP requests...

6.8CVSS7.7AI score0.00399EPSS
Exploits0References4Affected Software1
Packet Storm
Packet Storm
added 2024/12/02 12:0 a.m.545 views

Laravel 11.0 Cross Site Scripting

/! - VULNERABILITY: Cross Site Scripting Laravel version 11.0 - Authenticated Persistent XSS - GOOGLE DORK: inurl:.com/?q= - GOOGLE DORK: Site:.com/?q= - DATE: 2024-12-01 - SECURITY RESEARCHER: E1.Coders - VENDOR: LARAVEL https://laravel.com/ - SOFTWARE LINK:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/12/02 12:0 a.m.282 views

Russian FSB Cross Site Scripting

/! - VULNERABILITY: Cross Site Scripting Federal Security Service of the Russian Federation - Authenticated Persistent XSS - GOOGLE DORK: inurl:fsb.ru/fsb/sh.htm?query= - DATE: 2024-11-29 - SECURITY RESEARCHER: E1.Coders - VENDOR: FSB http://www.fsb.ru/ - SOFTWARE LINK: http://www.fsb.ru/ - CVSS:...

7.4AI score
Exploits0
NVD
NVD
added 2023/10/16 6:15 a.m.27 views

CVE-2023-45572

Buffer Overflow vulnerability in D-Link device DI-7003GV2.D1 v.23.08.25D1 and before, DI-7100G+V2.D1 v.23.08.23D1 and before, DI-7100GV2.D1 v.23.08.23D1, DI-7200G+V2.D1 v.23.08.23D1 and before, DI-7200GV2.E1 v.23.08.23E1 and before, DI-7300G+V2.D1 v.23.08.23D1, and DI-7400G+V2.D1 v.23.08.23D1 and...

9.8CVSS9.7AI score0.01242EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/10/16 12:0 a.m.12 views

CVE-2023-45573

Buffer Overflow vulnerability in D-Link device DI-7003GV2.D1 v.23.08.25D1 and before, DI-7100G+V2.D1 v.23.08.23D1 and before, DI-7100GV2.D1 v.23.08.23D1, DI-7200G+V2.D1 v.23.08.23D1 and before, DI-7200GV2.E1 v.23.08.23E1 and before, DI-7300G+V2.D1 v.23.08.23D1, and DI-7400G+V2.D1 v.23.08.23D1 and...

7.9AI score0.01352EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/10/16 12:0 a.m.29 views

CVE-2023-45572

Buffer Overflow vulnerability in D-Link device DI-7003GV2.D1 v.23.08.25D1 and before, DI-7100G+V2.D1 v.23.08.23D1 and before, DI-7100GV2.D1 v.23.08.23D1, DI-7200G+V2.D1 v.23.08.23D1 and before, DI-7200GV2.E1 v.23.08.23E1 and before, DI-7300G+V2.D1 v.23.08.23D1, and DI-7400G+V2.D1 v.23.08.23D1 and...

9.8AI score0.01242EPSS
Exploits1References1
CVE
CVE
added 2023/10/16 12:0 a.m.59 views

CVE-2023-45574

CVE-2023-45574 affects multiple D-Link devices (DI-7003GV2.D1, DI-7100G+V2.D1, DI-7100GV2.D1, DI-7200G+V2.D1, DI-7200GV2.E1, DI-7300G+V2.D1, DI-7400G+V2.D1). The issue is a buffer overflow that allows a remote attacker to execute arbitrary code via the fn parameter of the file.data function. Vuln...

9.8CVSS9.6AI score0.01647EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2023/10/16 12:0 a.m.207 views

CVE-2023-45580

CVE-2023-45580 affects multiple D-Link router models (DI-7003GV2, DI-7100G+V2, DI-7100GV2, DI-7200G+V2, DI-7200GV2.E1, DI-7300G+V2, DI-7400G+V2). The issue is a Buffer Overflow in the ddns.asp function that allows a remote attacker to execute arbitrary code via the wild/mx and other parameters. E...

9.8CVSS9.6AI score0.01242EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/10/16 12:0 a.m.47 views

CVE-2023-45577

The CVE-2023-45577 issue is a stack/buffer overflow in the D-Link H5/speedlimit.data endpoint of multiple DI-7xxx devices (DI-7003GV2.D1, DI-7100G+V2.D1, DI-7100GV2.D1, DI-7200G+V2.D1, DI-7200GV2.E1, DI-7300G+V2.D1, DI-7400G+V2.D1). The root cause is an overflow in the wanid parameter handling, a...

9.8CVSS9.6AI score0.01242EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/10/16 12:0 a.m.76 views

CVE-2023-45576

The CVE-2023-45576 entry describes a Buffer Overflow vulnerability affecting multiple D-Link router models (DI-7003GV2.D1, DI-7100G+V2.D1, DI-7100GV2.D1, DI-7200G+V2.D1, DI-7200GV2.E1, DI-7300G+V2.D1, DI-7400G+V2.D1) with firmware versions listed in the description. The root cause is an issue in ...

9.8CVSS9.6AI score0.01242EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/10/16 12:0 a.m.181 views

CVE-2023-45579

The CVE-2023-45579 issue is a buffer overflow in D-Link router firmware (DI-7003GV2.D1, DI-7100G+V2.D1, DI-7100GV2.D1, DI-7200G+V2.D1, DI-7200GV2.E1, DI-7300G+V2.D1, DI-7400G+V2.D1) where the jingx.asp function’s ip/type parameter allows remote code execution. The root cause is a buffer overflow ...

9.8CVSS9.6AI score0.01242EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder