40 matches found
EUVD-2014-1315
Malware in sbrugna...
EUVD-2014-2271
Malware in sbrugna...
EUVD-2023-50265
Malicious code in bioql PyPI...
EUVD-2023-41616
Malicious code in bioql PyPI...
EUVD-2023-41632
Malicious code in bioql PyPI...
CVE-2023-37739
i-doit Pro v25 and below was discovered to be vulnerable to path traversal...
CVE-2023-37755
i-doit pro 25 and below and I-doit open 25 and below are configured with insecure default administrator credentials, and there is no warning or prompt to ask users to change the default password and account name. Unauthenticated attackers can exploit this vulnerability to obtain Administrator...
CVE-2014-2231
Cross-site scripting XSS vulnerability in the API in synetics i-doit pro before 1.2.5 allows remote attackers to inject arbitrary web script or HTML via a property title...
CVE-2023-46003
I-doit pro 25 and below is vulnerable to Cross Site Scripting XSS via index.php...
Cross site scripting
I-doit pro 25 and below is vulnerable to Cross Site Scripting XSS via index.php...
I-doit pro Cross-Site Scripting Vulnerability
i-doit is a configuration management database software from i-doit Inc. A security vulnerability exists in I-doit pro 25 and prior versions that stems from vulnerability to cross-site scripting XSS attacks via index.php...
CVE-2023-46003
CVE-2023-46003 affects i-doit pro 25 and below, with a Cross-Site Scripting (XSS) vulnerability exploitable via the index.php endpoint. Available sources consistently state the issue but do not provide exploit details. Potential remediation notes from a PT Security advisory suggest deprioritizing...
CVE-2023-46003
I-doit pro 25 and below is vulnerable to Cross Site Scripting XSS via index.php...
CVE-2023-46003
I-doit pro 25 and below is vulnerable to Cross Site Scripting XSS via index.php...
CVE-2023-37756
I-doit pro 25 and below and I-doit open 25 and below employ weak password requirements for Administrator account creation. Attackers are able to easily guess users' passwords via a bruteforce attack...
Code injection
I-doit pro 25 and below and I-doit open 25 and below employ weak password requirements for Administrator account creation. Attackers are able to easily guess users' passwords via a bruteforce attack...
CVE-2023-37739
i-doit Pro v25 and below was discovered to be vulnerable to path traversal...
CVE-2023-37739
i-doit Pro v25 and below was discovered to be vulnerable to path traversal...
CVE-2023-37755
i-doit pro 25 and below and I-doit open 25 and below are configured with insecure default administrator credentials, and there is no warning or prompt to ask users to change the default password and account name. Unauthenticated attackers can exploit this vulnerability to obtain Administrator...
CVE-2023-37755
i-doit pro 25 and below and I-doit open 25 and below are configured with insecure default administrator credentials, and there is no warning or prompt to ask users to change the default password and account name. Unauthenticated attackers can exploit this vulnerability to obtain Administrator...