22 matches found
EUVD-2025-16196
Malicious code in bioql PyPI...
EUVD-2025-16201
Malicious code in bioql PyPI...
EUVD-2025-16195
Malicious code in bioql PyPI...
CVE-2024-57337
An arbitrary file upload vulnerability in the opcode 500 functionality of M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file...
CVE-2024-57338
An arbitrary file upload vulnerability in M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file...
CVE-2024-57336
Incorrect access control in M2Soft CROWNIX Report & ERS affected v7.x to v7.4.3.599 and v8.x to v8.0.3.79 allows unauthorized attackers to obtain Administrator account access...
CVE-2024-57337
An arbitrary file upload vulnerability in the opcode 500 functionality of M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file...
CVE-2024-57338
An arbitrary file upload vulnerability in M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file...
CVE-2024-57336
Incorrect access control in M2Soft CROWNIX Report & ERS affected v7.x to v7.4.3.599 and v8.x to v8.0.3.79 allows unauthorized attackers to obtain Administrator account access...
CVE-2024-57337
An arbitrary file upload vulnerability in the opcode 500 functionality of M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file...
M2Soft CROWNIX Report & ERS 安全漏洞
M2Soft CROWNIX Report & ERS is a reporting solution with powerful reporting capabilities from M2Soft Korea. A security vulnerability exists in M2Soft CROWNIX Report & ERS versions 7.4.3.599 and earlier and 8.0.3.79 and earlier, which stems from improper access control and could lead to the takeov...
M2Soft CROWNIX Report & ERS 安全漏洞
M2Soft CROWNIX Report & ERS is a reporting solution with powerful reporting capabilities from M2Soft Korea. A security vulnerability exists in M2Soft CROWNIX Report & ERS versions 5.5.14.1070 and earlier, 7.4.3.960 and earlier, and 8.2.0.345 and earlier, which stems from an arbitrary file upload ...
PT-2025-23118 · M2Soft · M2Soft Crownix Report & Ers
Name of the Vulnerable Software and Affected Versions: M2Soft CROWNIX Report & ERS versions 5.x through 5.5.14.1070 M2Soft CROWNIX Report & ERS versions 7.x through 7.4.3.960 M2Soft CROWNIX Report & ERS versions 8.x through 8.2.0.345 Description: An arbitrary file upload issue in the opcode 500...
PT-2025-23117 · M2Soft · M2Soft Crownix Report & Ers
Name of the Vulnerable Software and Affected Versions: M2Soft CROWNIX Report & ERS versions 7.x through 7.4.3.599 M2Soft CROWNIX Report & ERS versions 8.x through 8.0.3.79 Description: The issue is related to incorrect access control, allowing unauthorized attackers to obtain Administrator accoun...
CVE-2024-57338
The CVE-2024-57338 entry affects M2Soft CROWNIX Report & ERS. Affected versions include 5.x up to 5.5.14.1070, 7.x up to 7.4.3.960, and 8.x up to 8.2.0.345. The vulnerability is an arbitrary file upload that allows execution of arbitrary code via a crafted file. The issue is caused by insecure fi...
CVE-2024-57336
Incorrect access control in M2Soft CROWNIX Report & ERS affected v7.x to v7.4.3.599 and v8.x to v8.0.3.79 allows unauthorized attackers to obtain Administrator account access...
CVE-2024-57336
M2Soft CROWNIX Report & ERS is affected by an improper access control flaw in versions 7.x through 7.4.3.599 and 8.x through 8.0.3.79, which can let an unauthenticated attacker obtain Administrator account access. Root cause: incorrect access control. Impact as stated: administrator takeover risk...
CVE-2024-57338
An arbitrary file upload vulnerability in M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file...
CVE-2024-57336
Incorrect access control in M2Soft CROWNIX Report & ERS affected v7.x to v7.4.3.599 and v8.x to v8.0.3.79 allows unauthorized attackers to obtain Administrator account access...
CVE-2024-57337
An arbitrary file upload vulnerability in the opcode 500 functionality of M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file...