5 matches found
EUVD-2025-23280
Malicious code in bioql PyPI...
CVE-2025-29557
ExaGrid EX10 6.3 - 7.0.1.P08 is vulnerable to Incorrect Access Control in the MailConfiguration API endpoint, where users with operator-level privileges can issue an HTTP request to retrieve SMTP credentials, including plaintext passwords...
CVE-2025-29557
ExaGrid EX10 (versions 6.3–7.0.1.P08) is vulnerable to Incorrect Access Control in the MailConfiguration API endpoint. The issue allows users with operator-level privileges to issue an HTTP request that retrieves SMTP credentials, including plaintext passwords. The root cause is improper access c...
CVE-2025-29557
ExaGrid EX10 6.3 - 7.0.1.P08 is vulnerable to Incorrect Access Control in the MailConfiguration API endpoint, where users with operator-level privileges can issue an HTTP request to retrieve SMTP credentials, including plaintext passwords...
PT-2025-31526 · Exagrid · Exagrid Ex10
Name of the Vulnerable Software and Affected Versions: ExaGrid EX10 versions 6.3 through 7.0.1.P08 Description: The software is susceptible to incorrect access control. Users with operator-level privileges can retrieve SMTP credentials, including plaintext passwords, by issuing an HTTP request to...