Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/10/28 8:55 a.m.14 views

CVE-2025-12249

A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. The impacted element is an unknown function of the component Edit Ticket Page. Performing manipulation of the argument Title results in csv injection. It is possible to initiate the attack remotely. The exploit is now...

6.5CVSS6.5AI score0.00264EPSS
Exploits0References1
NVD
NVD
added 2025/10/27 8:15 a.m.5 views

CVE-2025-12249

A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. The impacted element is an unknown function of the component Edit Ticket Page. Performing manipulation of the argument Title results in csv injection. It is possible to initiate the attack remotely. The exploit is now...

6.5CVSS0.00264EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/10/27 8:2 a.m.5 views

CVE-2025-12249 Axosoft Scrum and Bug Tracking Edit Ticket csv injection

A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. The impacted element is an unknown function of the component Edit Ticket Page. Performing manipulation of the argument Title results in csv injection. It is possible to initiate the attack remotely. The exploit is now...

6.5CVSS6.4AI score0.00264EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/27 8:2 a.m.60 views

EUVD-2025-36134

A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. The impacted element is an unknown function of the component Edit Ticket Page. Performing manipulation of the argument Title results in csv injection. It is possible to initiate the attack remotely. The exploit is now...

6.5CVSS6.3AI score0.00264EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.5 views

Axosoft Scrum and Bug Tracking 安全漏洞

Axosoft Scrum and Bug Tracking is an Agile project management and defect tracking software from Axosoft Corporation, USA. A security vulnerability exists in Axosoft Scrum and Bug Tracking version 22.1.1.11545, which stems from an incorrect manipulation of the parameter Title in the component Edit...

6.5CVSS6.6AI score0.00264EPSS
Exploits0References4
NVD
NVD
added 2022/06/15 5:15 p.m.15 views

CVE-2022-32302

Theme Park Ticketing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editticket.php...

8.8CVSS0.00921EPSS
Exploits1References1
Prion
Prion
added 2022/06/15 5:15 p.m.12 views

Sql injection

Theme Park Ticketing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editticket.php...

6.5CVSS8.9AI score0.00921EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder