4 matches found
EUVD-2025-25472
Malicious code in bioql PyPI...
CVE-2025-47184
An XML external entities XXE injection vulnerability in the /init API endpoint in Exagid EX10 before 6.4.0 P20, 7.0.1 P12, and 7.2.0 P08 allows an authenticated, unprivileged attacker to achieve information disclosure and privilege escalation via a crafted ISys XML message...
CVE-2025-47184
Exagrid EX10 contains an XXE injection in the /init API endpoint. Affected versions include Exagid EX10 prior to 6.4.0 P20, 7.0.1 P12, and 7.2.0 P08. An authenticated, unprivileged attacker can trigger information disclosure and privilege escalation by submitting a crafted ISys XML message, due t...
CVE-2025-47184
An XML external entities XXE injection vulnerability in the /init API endpoint in Exagid EX10 before 6.4.0 P20, 7.0.1 P12, and 7.2.0 P08 allows an authenticated, unprivileged attacker to achieve information disclosure and privilege escalation via a crafted ISys XML message...