144 matches found
CVE-2025-30022
CVE-2025-30022 concerns CM Soluces Informatica Ltda Auto Atendimento 1.x.x, with a reported SQL injection via the DATANASC parameter . The initial record provides a CVSS v3.1 base score of 6.8 (Medium) with attack vector: network, attack complexity: low, privileges required: low, user interaction...
Informatica: XSS1
The XSS vulnerability was discovered in the search functionality of the Informatica website. The vulnerability allowed an attacker to inject arbitrary JavaScript code into the search results, which could be executed by the user's browser...
CVE-2024-22632
Setor Informatica Sistema Inteligente para Laboratorios S.I.L. 388 was discovered to contain a remote code execution RCE vulnerability via the hmsg parameter. This vulnerability is triggered via a crafted POST request...
CVE-2024-22633
Setor Informatica Sistema Inteligente para Laboratorios S.I.L. 388 was discovered to contain a remote code execution RCE vulnerability via the hprinter parameter. This vulnerability is triggered via a crafted POST request...
CVE-2024-22633
Setor Informatica Sistema Inteligente para Laboratorios S.I.L. 388 was discovered to contain a remote code execution RCE vulnerability via the hprinter parameter. This vulnerability is triggered via a crafted POST request...
CVE-2024-22632
Setor Informatica Sistema Inteligente para Laboratorios S.I.L. 388 was discovered to contain a remote code execution RCE vulnerability via the hmsg parameter. This vulnerability is triggered via a crafted POST request...
CVE-2024-22632
Setor Informatica Sistema Inteligente para Laboratorios S.I.L. 388 was discovered to contain a remote code execution RCE vulnerability via the hmsg parameter. This vulnerability is triggered via a crafted POST request...
PT-2024-19510 · Setor Informatica · Setor Informatica Sistema Inteligente Para Laboratorios
Name of the Vulnerable Software and Affected Versions: Setor Informatica Sistema Inteligente para Laboratorios S.I.L. version 388 Description: The issue is related to a remote code execution RCE vulnerability. It can be triggered via a crafted POST request to the hprinter parameter...
PT-2024-19509 · Setor Informatica · Setor Informatica Sistema Inteligente Para Laboratorios
Name of the Vulnerable Software and Affected Versions: Setor Informatica Sistema Inteligente para Laboratorios S.I.L. version 388 Description: The issue is related to a remote code execution RCE vulnerability. It can be triggered via a crafted POST request using the hmsg parameter. Recommendation...
Setor Informatica S.I.L 安全漏洞
Setor Informatica S.I.L is an informatization solution consisting of software solutions and technologies and services from Setor Informatica, a Brazilian company. A security vulnerability exists in Setor Informatica S.I.L version 388, which stems from the presence of a Remote Code Execution RCE...
CVE-2024-22633
CVE-2024-22633 affects Setor Informatica Sistema Inteligente para Laboratórios (S.I.L.) 388, with a remote code execution (RCE) via the hprinter parameter triggered by a crafted POST request. The vulnerability is described as critical (CVSS 3.1: 9.8, NETWORK, no user interaction, LOCAL/NEIGHBORHO...
Setor Informatica SIL Cross-Site Scripting Vulnerability
Setor Informatica SIL is a solution for connecting medical laboratories from Setor Informatica. A cross-site scripting vulnerability exists in Setor Informatica SIL version 3.1, which stems from the application's lack of effective filtering and escaping of user-supplied data, and can be exploited...
CVE-2024-24035
Cross Site Scripting XSS vulnerability in Setor Informatica SIL 3.1 allows attackers to run arbitrary code via the hmessage parameter...
CVE-2024-24035
Cross Site Scripting XSS vulnerability in Setor Informatica SIL 3.1 allows attackers to run arbitrary code via the hmessage parameter...
Cross site scripting
Cross Site Scripting XSS vulnerability in Setor Informatica SIL 3.1 allows attackers to run arbitrary code via the hmessage parameter...
CVE-2024-24035
Cross Site Scripting XSS vulnerability in Setor Informatica SIL 3.1 allows attackers to run arbitrary code via the hmessage parameter...
PT-2024-20249 · Setor Informatica · Setor Informatica Sil
Name of the Vulnerable Software and Affected Versions: Setor Informatica SIL version 3.1 Description: A Cross Site Scripting XSS issue allows attackers to run arbitrary code via the hmessage parameter. This enables attackers to execute malicious scripts on the affected system. Recommendations: Fo...
Setor Informatica SIL 安全漏洞
Setor Informatica SIL is a solution for connecting medical laboratories from Setor Informatica. A cross-site scripting vulnerability exists in Setor Informatica SIL version 3.1, which stems from the application's lack of effective filtering and escaping of user-supplied data, and can be exploited...
CVE-2024-24035
Cross Site Scripting XSS vulnerability in Setor Informatica SIL 3.1 allows attackers to run arbitrary code via the hmessage parameter...
CVE-2024-24035
Setor Informatica SIL 3.1 contains a Cross Site Scripting (XSS) vulnerability in the hmessage parameter. The issue arises from insufficient filtering/escaping of user-supplied data, enabling arbitrary code execution via the parameter. Documented across multiple sources (NVD/Red Hat CNVD/CNNVD) wi...