Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/02/13 1:31 a.m.6 views

CVE-2025-70981

CordysCRM 1.4.1 is vulnerable to SQL Injection in the employee list query interface /user/list via the departmentIds parameter...

9.8CVSS5.9AI score0.00319EPSS
Exploits1References1
NVD
NVD
added 2026/02/12 6:16 p.m.6 views

CVE-2025-70981

CordysCRM 1.4.1 is vulnerable to SQL Injection in the employee list query interface /user/list via the departmentIds parameter...

9.8CVSS0.00319EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/12 12:0 a.m.12 views

PT-2026-7867

CordysCRM 1.4.1 is vulnerable to SQL Injection in the employee list query interface /user/list via the departmentIds parameter...

5.9AI score0.00319EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/02/12 12:0 a.m.3 views

CVE-2025-70981

CordysCRM 1.4.1 is vulnerable to SQL Injection in the employee list query interface /user/list via the departmentIds parameter...

5.9AI score0.00319EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/02/12 12:0 a.m.4 views

CVE-2025-70981

CordysCRM 1.4.1 is vulnerable to SQL Injection in the employee list query interface /user/list via the departmentIds parameter...

9.8CVSS5.9AI score0.00319EPSS
Exploits1References2
CVE
CVE
added 2026/02/12 12:0 a.m.14 views

CVE-2025-70981

CordysCRM 1.4.1 is vulnerable to SQL Injection in the employee list query interface (/user/list) via the departmentIds parameter. Root cause: unsanitized input leading to SQLi. Impact: high confidentiality, integrity, and availability impact per CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:...

9.8CVSS5.9AI score0.00319EPSS
Exploits1References1Affected Software1
Packet Storm
Packet Storm
added 2014/02/28 12:0 a.m.26 views

OrangeHRM 3.1.1 Cross Site Scripting

============================================================== Title ...| XSS vulnerability in OrangeHRM Version .| OrangeHRM 3.1.1 Date ....| 28.02.2014 Found ...| HauntIT Blog Home ....| http://www.orangehrm.com ============================================================== + from admin user:...

Exploits0
Rows per page
Query Builder