95 matches found
EUVD-2021-20905
Malware in sbrugna...
EUVD-2021-21690
Malware in sbrugna...
EUVD-2021-21691
Malware in sbrugna...
EUVD-2020-30099
Malware in sbrugna...
EUVD-2021-20906
Malware in sbrugna...
EUVD-2020-30100
Malware in sbrugna...
EUVD-2022-29759
Malicious code in bioql PyPI...
EUVD-2022-29760
Malicious code in bioql PyPI...
EUVD-2022-29761
Malicious code in bioql PyPI...
CVE-2022-25013
Ice Hrm 30.0.0.OS was discovered to contain multiple reflected cross-site scripting XSS vulnerabilities via the "key" and "fm" parameters in the component login.php...
CVE-2022-25015
A stored cross-site scripting XSS vulnerability in Ice Hrm 30.0.0.OS allows attackers to steal cookies via a crafted payload inserted into the First Name field...
CVE-2022-25014
Ice Hrm 30.0.0.OS was discovered to contain a reflected cross-site scripting XSS vulnerability via the "m" parameter in the Dashboard of the current user. This vulnerability allows attackers to compromise session credentials via user interaction with a crafted link...
CVE-2021-35046
A session fixation vulnerability was discovered in Ice Hrm 29.0.0 OS which allows an attacker to hijack a valid user session via a crafted session cookie...
CVE-2021-35045
Cross site scripting XSS vulnerability in Ice Hrm 29.0.0.OS, allows attackers to execute arbitrary code via the parameters to the /app/ endpoint...
CVE-2021-34243
A stored cross site scripting XSS vulnerability was discovered in Ice Hrm 29.0.0.OS which allows attackers to execute arbitrary web scripts or HTML via a crafted file uploaded into the Document Management tab. The exploit is triggered when a user visits the upload location of the crafted file...
CVE-2021-34244
A cross site request forgery CSRF vulnerability was discovered in Ice Hrm 29.0.0.OS which allows attackers to create new admin accounts or change users' passwords...
CVE-2020-9270
ICE Hrm 26.2.0 is vulnerable to CSRF that leads to password reset via service.php...
CVE-2020-9271
ICE Hrm 26.2.0 is vulnerable to CSRF that leads to user creation via service.php...
Ice Hrm Cross-Site Scripting Vulnerability (CNVD-2022-67479)
Ice Hrm is a human resource management system. Ice Hrm version 30.0.0.OS is vulnerable to a cross-site scripting vulnerability caused by a lack of data validation filtering of user-supplied and output data in the "m" parameter of the user dashboard. An attacker could exploit this vulnerability to...
Ice Hrm Cross-Site Scripting Vulnerability (CNVD-2022-67478)
Ice Hrm is a human resource management system. Ice Hrm version 30.0.0.OS is vulnerable to a cross-site scripting vulnerability that stems from a lack of checksum filtering of user-supplied data and output data in the key and fm parameters in the component login.php. An attacker could exploit this...