Lucene search
K

70 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-39746

Malicious code in bioql PyPI...

5.5CVSS6.6AI score0.00301EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-32155

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00181EPSS
Exploits0References2
NVD
NVD
added 2025/09/14 2:15 a.m.4 views

CVE-2025-10386

A vulnerability was found in Yida ECMS Consulting Enterprise Management System 1.0. This affects an unknown part of the file /login.do of the component POST Request Handler. The manipulation of the argument requestUrl results in cross site scripting. It is possible to launch the attack remotely...

5.3CVSS0.00317EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/09/14 1:32 a.m.3 views

CVE-2025-10386 Yida ECMS Consulting Enterprise Management System POST Request login.do cross site scripting

A vulnerability was found in Yida ECMS Consulting Enterprise Management System 1.0. This affects an unknown part of the file /login.do of the component POST Request Handler. The manipulation of the argument requestUrl results in cross site scripting. It is possible to launch the attack remotely...

5.3CVSS4AI score0.00317EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/14 1:32 a.m.11 views

CVE-2025-10386 Yida ECMS Consulting Enterprise Management System POST Request login.do cross site scripting

A vulnerability was found in Yida ECMS Consulting Enterprise Management System 1.0. This affects an unknown part of the file /login.do of the component POST Request Handler. The manipulation of the argument requestUrl results in cross site scripting. It is possible to launch the attack remotely...

5.3CVSS0.00317EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/08/25 12:0 a.m.4 views

Rebuild 安全漏洞

Rebuild is a highly customizable enterprise management system from getrebuild open source. A security vulnerability exists in Rebuild version 4.0.4, which stems from a flaw in the filtering code of the RebuildWebInterceptor class that could lead to information disclosure or elevation of privilege...

9.8CVSS6.4AI score0.00648EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 9:59 a.m.9 views

CVE-2024-42678

Cross Site Scripting vulnerability in Super easy enterprise management system v.1.0.0 and before allows a local attacker to execute arbitrary code via a crafted script to the /WebSet/DlgGridSet.html component...

6.1CVSS7AI score0.00331EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:13 a.m.11 views

CVE-2024-42680

An issue in Super easy enterprise management system v.1.0.0 and before allows a local attacker to obtain the server absolute path by entering a single quotation mark...

5.5CVSS6.6AI score0.00301EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:12 a.m.6 views

CVE-2024-42679

SQL Injection vulnerability in Super easy enterprise management system v.1.0.0 and before allows a local attacker to execute arbitrary code via a crafted script to the/ajax/Login.ashx component...

7.8CVSS8AI score0.00308EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:21 a.m.9 views

CVE-2024-44761

An issue in EQ Enterprise Management System before v2.0.0 allows attackers to execute a directory traversal via crafted requests...

9.9CVSS7.2AI score0.01062EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:28 p.m.7 views

CVE-2021-26832

Cross Site Scripting XSS in the "Reset Password" page form of Priority Enterprise Management System v8.00 allows attackers to execute javascript on behalf of the victim by sending a malicious URL or directing the victim to a malicious site...

6.1CVSS6.2AI score0.00846EPSS
Exploits0References1
OSV
OSV
added 2024/08/28 8:15 p.m.4 views

CVE-2024-44760

Incorrect access control in the component /servlet/SnoopServlet of Shenzhou News Union Enterprise Management System v5.0 through v18.8 allows attackers to access sensitive information regarding the server...

7.5CVSS5.8AI score0.00517EPSS
Exploits1References2
OSV
OSV
added 2024/08/28 7:15 p.m.4 views

CVE-2024-44761

An issue in EQ Enterprise Management System before v2.0.0 allows attackers to execute a directory traversal via crafted requests...

9.8CVSS5.9AI score0.01062EPSS
Exploits1References2
CVE
CVE
added 2024/08/28 12:0 a.m.49 views

CVE-2024-44761

CVE-2024-44761 affects EQ Enterprise Management System prior to v2.0.0 and allows directory traversal via crafted requests. The root cause is not explicitly detailed in the provided content, but multiple sources confirm a traversal vulnerability impacting versions before 2.0.0. Reported impact is...

9.9CVSS6.8AI score0.01062EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2024/08/28 12:0 a.m.4 views

EQ Enterprise Management System 安全漏洞

EQ Enterprise Management System is an enterprise management system from China-based EQ. A security vulnerability exists in EQ Enterprise Management System version v2.0.0. An attacker performs directory traversal via a crafted request...

9.9CVSS6.7AI score0.01062EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/08/28 12:0 a.m.6 views

PT-2024-31240 · Unknown · Eq Enterprise Management System

Name of the Vulnerable Software and Affected Versions: EQ Enterprise Management System versions prior to v2.0.0 Description: An issue in EQ Enterprise Management System allows attackers to execute a directory traversal via crafted requests. This issue affects versions prior to v2.0.0...

9.9CVSS7.4AI score0.01062EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2024/08/28 12:0 a.m.14 views

PT-2024-31239 · Unknown · Shenzhou News Union Enterprise Management System

Name of the Vulnerable Software and Affected Versions: Shenzhou News Union Enterprise Management System versions 5.0 through 18.8 Description: The issue is related to incorrect access control in the component /servlet/SnoopServlet, allowing attackers to access sensitive information regarding the...

9.1CVSS6.5AI score0.00517EPSS
Exploits1References9
Cvelist
Cvelist
added 2024/08/28 12:0 a.m.19 views

CVE-2024-44760

Incorrect access control in the component /servlet/SnoopServlet of Shenzhou News Union Enterprise Management System v5.0 through v18.8 allows attackers to access sensitive information regarding the server...

0.00517EPSS
Exploits1References2
CNVD
CNVD
added 2024/08/16 12:0 a.m.7 views

SQL Injection Vulnerability in ezEIP of Guangzhou Wando Network Technology Co.

ezEIP is an enterprise management system. Ltd. ezEIP suffers from a SQL injection vulnerability that can be exploited by attackers to obtain sensitive information from the database...

7.4AI score
Exploits0
NVD
NVD
added 2024/08/15 2:15 p.m.25 views

CVE-2024-42680

An issue in Super easy enterprise management system v.1.0.0 and before allows a local attacker to obtain the server absolute path by entering a single quotation mark...

5.5CVSS0.00301EPSS
Exploits1References2
Rows per page
Query Builder