90 matches found
CVE-2025-62211 Dynamics 365 Field Service (online) Spoofing Vulnerability
...
EUVD-2013-2254
Malware in sbrugna...
EUVD-2025-13463
Malicious code in bioql PyPI...
EUVD-2025-13458
Malicious code in bioql PyPI...
EUVD-2025-13466
Malicious code in bioql PyPI...
ARD GEC en Ligne 安全漏洞
ARD GEC en Ligne is an online service portal of ARD France. A security vulnerability exists in ARD GEC en Ligne that stems from an insecure direct object reference to the feuid parameter in the payment history API endpoint, which could lead to unauthorized access to another user's payment history...
CVE-2025-45320
A Directory Listing Vulnerability was found in the /osms/Requester/ directory of the Kashipara Online Service Management Portal V1.0...
CVE-2025-45321
kashipara Online Service Management Portal V1.0 is vulnerable to SQL Injection in /osms/Requester/Requesterchangepass.php via the parameter: rPassword...
CVE-2025-45320
A Directory Listing Vulnerability was found in the /osms/Requester/ directory of the Kashipara Online Service Management Portal V1.0...
CVE-2025-45321
kashipara Online Service Management Portal V1.0 is vulnerable to SQL Injection in /osms/Requester/Requesterchangepass.php via the parameter: rPassword...
CVE-2025-45322
kashipara Online Service Management Portal V1.0 is vulnerable to SQL Injection in osms/Requester/CheckStatus.php via the checkid parameter...
CVE-2025-45320
A Directory Listing Vulnerability was found in the /osms/Requester/ directory of the Kashipara Online Service Management Portal V1.0...
CVE-2025-45322
kashipara Online Service Management Portal V1.0 is vulnerable to SQL Injection in osms/Requester/CheckStatus.php via the checkid parameter...
CVE-2025-45321
kashipara Online Service Management Portal V1.0 is vulnerable to SQL Injection in /osms/Requester/Requesterchangepass.php via the parameter: rPassword...
CVE-2025-45322
Kashipara Online Service Management Portal V1.0 is vulnerable to SQL Injection in osms/Requester/CheckStatus.php via the checkid parameter. The root cause is an unvalidated/unsafely constructed input in the CheckStatus.php path, enabling an attacker to inject SQL. Public references (NVD/Red Hat/C...
CVE-2025-45320
CVE-2025-45320 : A directory listing vulnerability exists in Kashipara Online Service Management Portal v1.0, triggered by mishandling of the /osms/Requester/ directory. This can allow disclosure of directory contents and metadata, impacting confidentiality. Exploitation is not reported in the pr...
CVE-2025-45321
Kashipara Online Service Management Portal V1.0 is affected by a SQL Injection in the /osms/Requester/Requesterchangepass.php endpoint, exploited via the rPassword parameter. The underlying cause is improper handling of this parameter, enabling an attacker to perform injection attacks. CVSS v3.1 ...
CVE-2025-45320
A Directory Listing Vulnerability was found in the /osms/Requester/ directory of the Kashipara Online Service Management Portal V1.0...
PT-2025-19717 · Unknown · Kashipara Online Service Management Portal
Name of the Vulnerable Software and Affected Versions: Kashipara Online Service Management Portal version V1.0 Description: A Directory Listing Vulnerability was found in the /osms/Requester/ directory. Recommendations: For Kashipara Online Service Management Portal version V1.0, consider...
PT-2025-19718 · Unknown · Kashipara Online Service Management Portal
Name of the Vulnerable Software and Affected Versions: kashipara Online Service Management Portal version V1.0 Description: The issue concerns a SQL Injection vulnerability in the /osms/Requester/Requesterchangepass.php endpoint, specifically via the rPassword parameter. Recommendations: For...