Lucene search
K

4 matches found

CNVD
CNVD
added 2022/06/09 12:0 a.m.17 views

PartKeepr Cross-Site Scripting Vulnerability

A cross-site scripting vulnerability exists in PartKeepr version 1.4.0, which is an inventory management software designed primarily for electronic components. The vulnerability stems from a security issue in the name field in /api/partcategories. An attacker could exploit this vulnerability to...

3.5CVSS3.1AI score0.00437EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/01/14 12:0 a.m.16 views

PartKeepr server-side request forgery vulnerability

PartKeepr is an inventory management software designed primarily for electronic components.PartKeepr suffers from a server-side request forgery vulnerability, which stems from the fact that the ability to upload attachments using a URL when creating a part does not validate whether a request can ...

4.3CVSS2.9AI score0.00713EPSS
Exploits1References1
OSV
OSV
added 2018/08/04 1:29 a.m.3 views

DEBIAN-CVE-2018-14473

OCS Inventory 2.4.1 lacks a proper XML parsing configuration, allowing the use of external entities. This issue can be exploited by an attacker sending a crafted HTTP request in order to exfiltrate information or cause a Denial of Service...

9.1CVSS8.7AI score0.0307EPSS
Exploits1References1
exploitpack
exploitpack
added 2017/02/02 12:0 a.m.20 views

Itech Inventory Management Software 3.77 - SQL Injection

Itech Inventory Management Software 3.77 - SQL Injection Exploit Title: Itech Inventory Management Software v3.77 - SQL Injection Google Dork: N/A Date: 02.02.2017 Vendor Homepage: http://itechscripts.com/ Software Buy: http://www.itechscripts.com/inventory-management-software/ Demo:...

0.1AI score
Exploits0
Rows per page
Query Builder