Lucene search
+L

21 matches found

Positive Technologies
Positive Technologies
added 2026/04/13 12:0 a.m.11 views

PT-2026-32485

Name of the Vulnerable Software and Affected Versions AC800M System 800xA versions 6.0.0x through 6.0.0303.0 AC800M System 800xA versions 6.1.0x through 6.1.0031.0 AC800M System 800xA versions 6.1.1x through 6.1.1202.0 AC800M System 800xA versions 6.2.0x through 6.2.0006.0 Symphony Plus SD Series...

7.1CVSS5.2AI score0.00184EPSS
Exploits0References4
EUVD
EUVD
added 2025/11/18 9:32 p.m.9 views

EUVD-2025-198072

In Ascertia SigningHub through 8.6.8, there is a lack of rate limiting on the invite user function, leading to an email bombing vulnerability. An authenticated attacker can exploit this by automating invite requests...

6.2AI score0.00321EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/11/18 12:0 a.m.6 views

Ascertia SigningHub 安全漏洞

Ascertia SigningHub is an electronic signature software from Ascertia UK. A security vulnerability exists in Ascertia SigningHub version 8.6.8 and prior versions, which stems from a lack of rate limiting in the reset password function and could lead to email bombing...

9.8CVSS6.7AI score0.00461EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/11/18 12:0 a.m.9 views

Ascertia SigningHub 安全漏洞

Ascertia SigningHub is an electronic signature software from Ascertia UK. A security vulnerability exists in Ascertia SigningHub version 8.6.8 and prior versions, which stems from a lack of rate limiting in the Invite Users feature and could lead to email bombing...

4.3CVSS6.6AI score0.00321EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/20 3:30 p.m.5 views

EUVD-2025-35048

A lack of rate limiting in the component /Home/UploadStreamDocument of SigningHub v8.6.8 allows attackers to cause a Denial of Service DoS via uploading an excessive number of files...

7.5CVSS6.3AI score0.00429EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/20 3:30 p.m.4 views

EUVD-2025-35049

A lack of rate limiting in the One-Time Password OTP verification endpoint of SigningHub v8.6.8 allows attackers to bypass verification via a bruteforce attack...

6.5CVSS6.3AI score0.0036EPSS
Exploits0References4
OSV
OSV
added 2025/10/20 1:15 p.m.9 views

CVE-2025-56224

A lack of rate limiting in the One-Time Password OTP verification endpoint of SigningHub v8.6.8 allows attackers to bypass verification via a bruteforce attack...

8.1CVSS5.8AI score0.0036EPSS
Exploits0References3
NVD
NVD
added 2025/10/20 1:15 p.m.7 views

CVE-2025-56219

Incorrect access control in SigningHub v8.6.8 allows attackers to arbitrarily add user accounts without any rate limiting. This can lead to a resource exhaustion and a Denial of Service DoS when an excessively large number of user accounts are created...

7.1CVSS0.00299EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/20 12:0 a.m.5 views

SigningHub 安全漏洞

SigningHub is an electronic signature platform from SigningHub UK. A security vulnerability exists in SigningHub version v8.6.8, which stems from a lack of rate limiting in the component /Home/UploadStreamDocument, which could lead to a denial of service attack...

7.5CVSS6.6AI score0.00429EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/10/20 12:0 a.m.20 views

CVE-2025-56219

Incorrect access control in SigningHub v8.6.8 allows attackers to arbitrarily add user accounts without any rate limiting. This can lead to a resource exhaustion and a Denial of Service DoS when an excessively large number of user accounts are created...

0.00299EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/20 12:0 a.m.4 views

SigningHub 安全漏洞

SigningHub is an electronic signature platform from SigningHub UK. A security vulnerability exists in SigningHub version v8.6.8, which stems from a lack of rate limiting in the one-time password verification endpoint, which could lead to a brute force attack to bypass the verification...

8.1CVSS6.7AI score0.0036EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/17 12:0 a.m.6 views

SigningHub 安全漏洞

SigningHub is an electronic signature platform from SigningHub UK. A security vulnerability exists in SigningHub version 8.6.8, which stems from a lack of rate limiting in the login mechanism and could lead to a brute force attack to bypass authentication...

9.8CVSS6.6AI score0.00561EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/17 12:0 a.m.8 views

CVE-2025-56218

An arbitrary file upload vulnerability in SigningHub v8.6.8 allows attackers to execute arbitrary code via uploading a crafted PDF file...

7.5AI score0.00584EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-30463

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00387EPSS
Exploits0References2
NVD
NVD
added 2025/09/22 7:16 p.m.7 views

CVE-2025-59589

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Soledad soledad allows DOM-Based XSS.This issue affects Soledad: from n/a through = 8.6.8...

6.5CVSS0.00159EPSS
Exploits0References1
NVD
NVD
added 2025/09/22 7:16 p.m.28 views

CVE-2025-59588

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in PenciDesign Soledad soledad allows PHP Local File Inclusion.This issue affects Soledad: from n/a through = 8.6.8...

7.5CVSS0.00387EPSS
Exploits0References1
CVE
CVE
added 2025/09/22 6:25 p.m.27 views

CVE-2025-59588

CVE-2025-59588 describes an authenticated Local File Inclusion in the Soledad WordPress theme (Soledad

7.5CVSS5.9AI score0.00387EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/22 6:24 p.m.21 views

WordPress Soledad Theme <= 8.6.8 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Soledad versions = 8.6.8...

6.5CVSS6.2AI score0.00159EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/22 12:0 a.m.12 views

WordPress Soledad Theme <= 8.6.8 is vulnerable to Cross Site Scripting (XSS)

Software Soledad Type Theme Vulnerable versions = 8.6.8 Fixed in 8.6.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2025-59589 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 129327b97bb0 Credits João Pedro S Alcântara Kinorth Required privile...

6.5CVSS5.9AI score0.00159EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.10 views

PT-2025-39059

Name of the Vulnerable Software and Affected Versions PenciDesign Soledad versions through 8.6.8 Description A flaw exists in PenciDesign Soledad that allows for DOM-Based Cross-site Scripting XSS. This issue is due to improper neutralization of input during web page generation. The vulnerability...

6.5CVSS6.1AI score0.00159EPSS
Exploits0References4
Rows per page
Query Builder