Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

RedhatCVE
RedhatCVEadded 2025/10/14 7:42 a.m.5 views

CVE-2025-11671

Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain information such as account names and IP addresses...

6.9CVSS6.8AI score0.0006EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/13 9:30 a.m.1 views

EUVD-2025-34052

Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain user group names...

6.9CVSS6.5AI score0.0006EPSS
Exploits0References3
CVE
CVEadded 2025/10/13 7:32 a.m.8 views

CVE-2025-11672

CVE-2025-11672 concerns Uniweb/SoliPACS WebServer by EBM Technologies with a Missing Authentication vulnerability that allows unauthenticated remote access to a page exposing user group names. Affected component: web server software; root cause described as missing authentication/authorization on...

6.9CVSS6.7AI score0.0006EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/10/13 7:32 a.m.4 views

CVE-2025-11672 EBM Technologies|Uniweb/SoliPACS WebServer - Missing Authentication

Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain user group names...

6.9CVSS0.0006EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/10/13 7:30 a.m.7 views

CVE-2025-11671 EBM Technologies|Uniweb/SoliPACS WebServer - Missing Authentication

Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain information such as account names and IP addresses...

6.9CVSS0.0006EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-23540

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00483EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-23539

Malicious code in bioql PyPI...

7.5CVSS5.7AI score0.00066EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/03/21 2:2 a.m.15 views

CVE-2025-2585 EBM Technologies EBM Maintenance Center - SQL injection

EBM Maintenance Center From EBM Technologies has a SQL Injection vulnerability, allowing remote attackers with regular privileges to inject arbitrary SQL commands to read, modify, and delete database contents...

8.8CVSS0.00356EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/03/21 2:2 a.m.4 views

CVE-2025-2585 EBM Technologies EBM Maintenance Center - SQL injection

EBM Maintenance Center From EBM Technologies has a SQL Injection vulnerability, allowing remote attackers with regular privileges to inject arbitrary SQL commands to read, modify, and delete database contents...

8.8CVSS9.1AI score0.00356EPSS
Exploits0References2
NVD
NVDadded 2024/02/15 3:15 a.m.7 views

CVE-2024-26264

EBM Technologies RISWEB's specific query function parameter does not properly restrict user input, and this feature page is accessible without login. This allows remote attackers to inject SQL commands without authentication, enabling them to read, modify, and delete database records...

9.8CVSS9.8AI score0.00483EPSS
Exploits0References1
NVD
NVDadded 2024/02/15 3:15 a.m.9 views

CVE-2024-26262

EBM Technologies Uniweb/SoliPACS WebServer's query functionality lacks proper restrictions of user input, allowing remote attackers authenticated as regular user to inject SQL commands for reading, modifying, and deleting database records, as well as executing system commands. Attackers may even...

8.8CVSS9AI score0.00585EPSS
Exploits0References1
NVD
NVDadded 2024/02/15 3:15 a.m.12 views

CVE-2024-26263

EBM Technologies RISWEB's specific URL path is not properly controlled by permission, allowing attackers to browse specific pages and query sensitive data without login...

7.5CVSS5.2AI score0.00066EPSS
Exploits0References1
Prion
Prionadded 2024/02/15 3:15 a.m.7 views

Sql injection

EBM Technologies RISWEB's specific query function parameter does not properly restrict user input, and this feature page is accessible without login. This allows remote attackers to inject SQL commands without authentication, enabling them to read, modify, and delete database records...

7.5CVSS8.1AI score0.00483EPSS
Exploits0References1
Prion
Prionadded 2024/02/15 3:15 a.m.10 views

Sql injection

EBM Technologies Uniweb/SoliPACS WebServer's query functionality lacks proper restrictions of user input, allowing remote attackers authenticated as regular user to inject SQL commands for reading, modifying, and deleting database records, as well as executing system commands. Attackers may even...

6.5CVSS8AI score0.00585EPSS
Exploits0References1
Prion
Prionadded 2024/02/15 3:15 a.m.9 views

Path traversal

EBM Technologies RISWEB's specific URL path is not properly controlled by permission, allowing attackers to browse specific pages and query sensitive data without login...

5CVSS7AI score0.00066EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/02/15 3:2 a.m.9 views

CVE-2024-26264 EBM Technologies RISWEB - SQL Injection

EBM Technologies RISWEB's specific query function parameter does not properly restrict user input, and this feature page is accessible without login. This allows remote attackers to inject SQL commands without authentication, enabling them to read, modify, and delete database records...

9.8CVSS8.1AI score0.00483EPSS
Exploits0References1
CVE
CVEadded 2024/02/15 3:2 a.m.25 views

CVE-2024-26264

CVE-2024-26264 concerns EBM Technologies RISWEB, where a specific query function parameter does not properly restrict input and the page is accessible without login. This enables remote SQL injection without authentication, allowing an attacker to read, modify, and delete database records. The co...

9.8CVSS9.8AI score0.00483EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/02/15 3:2 a.m.13 views

CVE-2024-26264 EBM Technologies RISWEB - SQL Injection

EBM Technologies RISWEB's specific query function parameter does not properly restrict user input, and this feature page is accessible without login. This allows remote attackers to inject SQL commands without authentication, enabling them to read, modify, and delete database records...

9.8CVSS10AI score0.00483EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/02/15 2:56 a.m.14 views

CVE-2024-26263 EBM Technologies RISWEB - Improper Access Control

EBM Technologies RISWEB's specific URL path is not properly controlled by permission, allowing attackers to browse specific pages and query sensitive data without login...

5.3CVSS5.5AI score0.00066EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/02/15 2:56 a.m.9 views

CVE-2024-26263 EBM Technologies RISWEB - Improper Access Control

EBM Technologies RISWEB's specific URL path is not properly controlled by permission, allowing attackers to browse specific pages and query sensitive data without login...

5.3CVSS6.8AI score0.00066EPSS
Exploits0References1
Rows per page
Query Builder