Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2025/08/26 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-29396

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A sandboxing issue in Odoo Community 11.0 through 13.0 and Odoo Enterprise 11.0 through 13.0, when running with Python 3.6 or later, allows remote authenticated...

9.9CVSS7.6AI score0.01814EPSS
Exploits0References2
OSV
OSVadded 2023/04/25 7:15 p.m.0 views

DEBIAN-CVE-2021-26263

Cross-site scripting XSS issue in Discuss app of Odoo Community 14.0 through 15.0, and Odoo Enterprise 14.0 through 15.0, allows remote attackers to inject arbitrary web script in the browser of a victim, by posting crafted contents...

6.1CVSS7.1AI score0.00194EPSS
Exploits0References1
OSV
OSVadded 2023/04/25 7:15 p.m.1 views

DEBIAN-CVE-2021-44775

Cross-site scripting XSS issue in Website app of Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier, allows remote attackers to inject arbitrary web script in the browser of a victim, by posting crafted contents...

6.1CVSS7.2AI score0.00352EPSS
Exploits0References1
OSV
OSVadded 2023/04/25 7:15 p.m.0 views

UBUNTU-CVE-2021-23178

Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows attackers to validate online payments with a tokenized payment method that belongs to another user, causing the victim's payment method to be charged instead...

7.5CVSS7.2AI score0.00345EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2023/04/25 12:0 a.m.2 views

PT-2023-12044 · Odoo · Odoo Community +1

Name of the Vulnerable Software and Affected Versions: Odoo Community versions 15.0 and earlier Odoo Enterprise versions 15.0 and earlier Description: The issue is related to improper access control in the reporting engine of the l10n fr fec module. This allows remote authenticated users to extra...

8.7CVSS6AI score0.31815EPSS
Exploits0References27
OSV
OSVadded 2020/12/22 5:15 p.m.2 views

DEBIAN-CVE-2019-11782

Improper access control in Odoo Community 14.0 and earlier and Odoo Enterprise 14.0 and earlier, allows remote authenticated users with access to contact management to modify user accounts, leading to privilege escalation...

6.5CVSS6.4AI score0.0013EPSS
Exploits0References1
OSV
OSVadded 2017/07/04 6:29 p.m.2 views

CVE-2017-10804

In Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise Edition 9.0 and 10.0, remote attackers can bypass authentication under certain circumstances because parameters containing 0x00 characters are truncated before reaching the database layer. This occurs because Psycopg 2.x before...

9.8CVSS5.8AI score
Exploits0References3
OSV
OSVadded 2017/07/04 6:29 p.m.1 views

CVE-2017-10805

In Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise Edition 9.0 and 10.0, incorrect access control on OAuth tokens in the OAuth module allows remote authenticated users to hijack OAuth sessions of other users...

8.8CVSS5.8AI score0.00325EPSS
Exploits0References1
Rows per page
Query Builder