CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

User enumeration vulnerability in ORDAT FOSS-Online before v2.24.01 allows attackers to determine if an account exists in the application by comparing the server responses of the forgot password functionality...

5.3CVSS7AI score0.00165EPSS

Exploits1References1

Packet Storm News•added 2025/05/09 12:0 a.m.•2 views

Exploring the Susceptibility to Fraud of Monetary Incentive Mechanisms for Strengthening FOSS Projects

Free and open source software FOSS is ubiquitous on modern IT systems, accelerating the speed of software engineering over the past decades. With its increasing importance and historical reliance on uncompensated contributions, questions have been raised regarding the continuous maintenance of FO...

6.8AI score

Exploits0

Fedora•added 2025/03/01 1:40 a.m.•12 views

[SECURITY] Fedora 40 Update: cutter-re-2.3.4-6.fc40

Cutter is a Qt and C++ GUI for Rizin. Its goal is making an advanced, customizable and FOSS reverse-engineering platform while keeping the user experience at mind. Cutter is created by reverse engineers for reverse engineers...

9.1CVSS7.3AI score0.00432EPSS

Exploits0

Fedora•added 2024/12/12 2:30 a.m.•11 views

[SECURITY] Fedora 40 Update: iaito-5.9.9-2.fc40

iaito is a Qt and C++ GUI for radare2. It is the continuation of Cutter before the fork to keep radare2 as backend. Its goal is making an advanced, customizable and FOSS reverse-engineering platform while keeping the user experience at mind. The iaito is created by reverse engineers for reverse...

8.6CVSS6.7AI score0.00052EPSS

Exploits0

Fedora•added 2024/11/09 1:47 a.m.•12 views

[SECURITY] Fedora 40 Update: iaito-5.9.6-1.fc40

5.5CVSS7.3AI score0.00076EPSS

Exploits0

Fedora•added 2024/11/09 1:46 a.m.•13 views

[SECURITY] Fedora 41 Update: iaito-5.9.6-1.fc41

5.5CVSS7.3AI score0.00076EPSS

Exploits0

Fedora•added 2024/11/09 12:58 a.m.•11 views

[SECURITY] Fedora 39 Update: iaito-5.9.6-1.fc39

5.5CVSS7.3AI score0.00076EPSS

Exploits0

OSV•added 2024/09/12 7:15 p.m.•2 views

CVE-2024-34335

ORDAT FOSS-Online before version 2.24.01 was discovered to contain a reflected cross-site scripting XSS vulnerability via the login page...

6.1CVSS5.7AI score0.00177EPSS

Exploits1References3

OSV•added 2024/09/12 7:15 p.m.•0 views

CVE-2024-34334

ORDAT FOSS-Online before v2.24.01 was discovered to contain a SQL injection vulnerability via the forgot password function...

7.5CVSS5.8AI score0.00076EPSS

Exploits1References3

NVD•added 2024/09/12 7:15 p.m.•13 views

CVE-2024-34334

ORDAT FOSS-Online before v2.24.01 was discovered to contain a SQL injection vulnerability via the forgot password function...

9.3CVSS0.00076EPSS

Exploits1References3

OSV•added 2024/09/12 7:15 p.m.•1 views

CVE-2024-34336

5.3CVSS5.8AI score0.00165EPSS

Exploits1References3

NVD•added 2024/09/12 7:15 p.m.•15 views

CVE-2024-34335

ORDAT FOSS-Online before version 2.24.01 was discovered to contain a reflected cross-site scripting XSS vulnerability via the login page...

6.1CVSS0.00177EPSS

Exploits1References3

NVD•added 2024/09/12 7:15 p.m.•12 views

CVE-2024-34336

5.3CVSS0.00165EPSS

Exploits1References3

CNNVD•added 2024/09/12 12:0 a.m.•2 views

ORDAT FOSS-Online 安全漏洞

ORDAT FOSS-Online is an enterprise resource management solution from ORDAT. A security vulnerability exists in ORDAT FOSS-Online versions prior to 2.24.01, which stems from a Reflected Cross-Site Scripting XSS vulnerability on the login page...

6.1CVSS5.7AI score0.00177EPSS

Exploits1References4

Positive Technologies•added 2024/09/12 12:0 a.m.•2 views

PT-2024-25792 · Unknown · Ordat Foss-Online

Name of the Vulnerable Software and Affected Versions: ORDAT FOSS-Online versions prior to 2.24.01 Description: The issue is related to a SQL injection vulnerability in the forgot password function. Recommendations: For versions prior to 2.24.01, update to version 2.24.01 or later to resolve the...

9.3CVSS8.3AI score0.00076EPSS

Exploits1References8