Lucene search
+L

23 matches found

redhatcve
redhatcve
added 2026/06/05 7:31 p.m.8 views

CVE-2026-33892

A vulnerability has been identified in Industrial Edge Management Pro V1 All versions = V1.7.6 = V2.0.0 = V2.2.0 V2.8.0. Affected management systems do not properly enforce user authentication on remote connections to devices. This could facilitate an unauthenticated remote attacker to circumvent...

7.1CVSS5.5AI score0.00209EPSS
Exploits0References1
ncsc
ncsc
added 2026/04/14 11:37 a.m.14 views

Vulnerabilities fixed in Siemens products

Siemens has fixed vulnerabilities in several products such as Analytics Toolkit, Ruggedcom, Industrial Edge Management Pro, SIDIS and TPM. The vulnerabilities potentially enable a malicious person to carry out attacks that can lead to the following categories of damage: - Denial-of-Service DoS -...

9.8CVSS7.3AI score0.73495EPSS
Exploits7References8
nvd
nvd
added 2026/04/14 9:16 a.m.7 views

CVE-2026-33892

A vulnerability has been identified in Industrial Edge Management Pro V1 All versions = V1.7.6 = V2.0.0 = V2.2.0 V2.8.0. Affected management systems do not properly enforce user authentication on remote connections to devices. This could facilitate an unauthenticated remote attacker to circumvent...

7.1CVSS0.00209EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/04/14 8:40 a.m.1 views

CVE-2026-33892

A vulnerability has been identified in Industrial Edge Management Pro V1 All versions = V1.7.6 = V2.0.0 = V2.2.0 V2.8.0. Affected management systems do not properly enforce user authentication on remote connections to devices. This could facilitate an unauthenticated remote attacker to circumvent...

7.1CVSS5.8AI score0.00209EPSS
Exploits0References2Affected Software3
cve
cve
added 2026/04/14 8:40 a.m.10 views

CVE-2026-33892

Summary: CVE-2026-33892 affects Industrial Edge Management Pro (V1.7.6–V1.15.16), Industrial Edge Management Pro V2 (V2.0.0–V2.1.0), and Industrial Edge Management Virtual (V2.2.0–V2.7.9). The vulnerability arises from improper enforcement of user authentication on remote connections to devices, ...

7.1CVSS5.8AI score0.00209EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/04/14 12:0 a.m.6 views

PT-2026-32610

A vulnerability has been identified in Industrial Edge Management Pro V1 All versions = V1.7.6 = V2.0.0 = V2.2.0 V2.8.0. Affected management systems do not properly enforce user authentication on remote connections to devices. This could facilitate an unauthenticated remote attacker to circumvent...

7.1CVSS5.8AI score0.00209EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.9 views

EUVD-2024-34492

Malicious code in bioql PyPI...

7.6CVSS6.4AI score0.01094EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/02/05 2:43 a.m.9 views

CVE-2024-33911

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Weblizar School Management Pro.This issue affects School Management Pro: from n/a through 10.3.4...

7.6CVSS5.6AI score0.01094EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2024/08/21 12:0 a.m.4 views

PT-2024-7880 · Siemens · Industrial Edge Management Virtual +1

Name of the Vulnerable Software and Affected Versions: Industrial Edge Management Pro versions prior to V1.9.5 Industrial Edge Management Virtual versions prior to V2.3.1-1 Description: A vulnerability has been identified in the affected components of Industrial Edge Management, which do not...

10CVSS7.6AI score0.00764EPSS
Exploits0References29
osv
osv
added 2024/05/02 11:15 a.m.7 views

CVE-2024-33911

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Weblizar School Management Pro.This issue affects School Management Pro: from n/a through 10.3.4...

7.2CVSS5.8AI score0.01094EPSS
Exploits1References1
nvd
nvd
added 2024/05/02 11:15 a.m.28 views

CVE-2024-33911

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Weblizar School Management Pro.This issue affects School Management Pro: from n/a through 10.3.4...

7.6CVSS8.1AI score0.01094EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2024/05/02 11:10 a.m.21 views

CVE-2024-33911 WordPress The School Management Pro plugin <= 10.3.4 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Weblizar School Management Pro.This issue affects School Management Pro: from n/a through 10.3.4...

7.6CVSS7.9AI score0.01094EPSS
Exploits1References1
cvelist
cvelist
added 2024/05/02 11:10 a.m.39 views

CVE-2024-33911 WordPress The School Management Pro plugin <= 10.3.4 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Weblizar School Management Pro.This issue affects School Management Pro: from n/a through 10.3.4...

7.6CVSS8.3AI score0.01094EPSS
Exploits1References1
cve
cve
added 2024/05/02 11:10 a.m.72 views

CVE-2024-33911

CVE-2024-33911 concerns Weblizar School Management Pro (School Management Pro

7.6CVSS5.6AI score0.01094EPSS
Exploits1References1Affected Software1
cnnvd
cnnvd
added 2024/05/02 12:0 a.m.8 views

WordPress plugin School Management Pro SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

7.6CVSS7.7AI score0.01094EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2024/05/02 12:0 a.m.8 views

PT-2024-25544 · Weblizar · Weblizar School Management Pro

Name of the Vulnerable Software and Affected Versions: Weblizar School Management Pro versions through 10.3.4 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential exploitation...

7.6CVSS7.2AI score0.01094EPSS
Exploits1References9
patchstack
patchstack
added 2024/04/29 1:49 p.m.9 views

WordPress The School Management Pro plugin <= 10.3.4 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Ivan Spiridonov Patchstack Alliance in WordPress Plugin School Management Pro versions = 10.3.4...

7.6CVSS8.1AI score0.01094EPSS
Exploits1Affected Software1
patchstack
patchstack
added 2024/04/29 12:0 a.m.15 views

WordPress School Management Pro Plugin <= 10.3.4 is vulnerable to SQL Injection

Software School Management Pro Type Plugin Vulnerable versions = 10.3.4 Fixed in N/A OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-33911 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 78a8a05cb12b Credits Ivan Spiridonov Required privilege School...

7.6CVSS6.8AI score0.01094EPSS
Exploits1References1Affected Software1
saint
saint
added 2022/08/12 12:0 a.m.229 views

Weblizar School Management Pro plugin backdoor

Added: 08/12/2022 CVE: CVE-2022-1609 Background Weblizar School Management is a WordPress plugin for management of school operations. Problem The license checking code in School Management Pro contains a backdoor which allows remote attackers to execute arbitrary commands. Resolution Upgrade to t...

9.8CVSS9.8AI score0.64321EPSS
Exploits6
bdu_fstec
bdu_fstec
added 2022/07/06 12:0 a.m.8 views

The vulnerability of the REST API implementation of the plugin for managing a school and its objects in the School Management Pro system, a content management system for WordPress websites, allows a malicious individual to execute arbitrary PHP code and gain full control over the application.

The vulnerability of the REST API implementation of the School Management Pro plugin for managing schools and their objects in the WordPress content management system is related to improper code generation. Exploiting this vulnerability allows an attacker to execute arbitrary PHP code and gain fu...

10CVSS8.4AI score0.64321EPSS
Exploits6References9
Rows per page
Query Builder