Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-18370

Malware in sbrugna...

8.8CVSS8.8AI score0.01277EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-5578

Malware in sbrugna...

5.5CVSS5.5AI score0.02135EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/05/22 8:26 a.m.4 views

CVE-2019-14362

Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. This vulnerability could allow remote authenticated attackers to replace a file on the server via the getAttachmentDirectoryForNewAttachment inpKey value...

5.5CVSS6.6AI score0.02135EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:13 a.m.6 views

CVE-2017-9437

Openbravo Business Suite 3.0 is affected by SQL injection. This vulnerability could allow remote authenticated attackers to inject arbitrary SQL code...

8.8CVSS7.6AI score0.01277EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 1:48 a.m.9 views

CVE-2013-3617

The XML API in Openbravo ERP 2.5, 3.0, and earlier allows remote authenticated users to read arbitrary files via an XML document with an external entity declaration in conjunction with an entity reference to /ws/dal/ADUser or other /ws/dal/XXX interfaces, related to an XML External Entity XXE iss...

3.5CVSS6.6AI score0.21074EPSS
Exploits3References1
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.206 views

Openbravo ERP XXE Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'net/dns' require 'rexml/document' class MetasploitModule 'Openbravo ERP XXE Arbitrary File Read', 'Description' = %q The Openbravo ERP XML API expands external...

3.5CVSS7AI score0.21074EPSS
Exploits3
CNVD
CNVDadded 2019/07/29 12:0 a.m.1 views

Openbravo ERP Directory Traversal Vulnerability

Openbravo ERP is a web-based enterprise resource planning ERP solution. A path traversal vulnerability exists in Openbravo ERP versions prior to 3.0PR19Q1.3. The vulnerability stems from the failure of a networked system or product to properly filter special elements in the path of a resource or...

5.5CVSS6.8AI score0.02135EPSS
Exploits1References1
NVD
NVDadded 2019/07/28 6:15 p.m.9 views

CVE-2019-14362

Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. This vulnerability could allow remote authenticated attackers to replace a file on the server via the getAttachmentDirectoryForNewAttachment inpKey value...

5.5CVSS5.3AI score0.02135EPSS
Exploits1References3
OSV
OSVadded 2019/07/28 6:15 p.m.1 views

CVE-2019-14362

Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. This vulnerability could allow remote authenticated attackers to replace a file on the server via the getAttachmentDirectoryForNewAttachment inpKey value...

5.4CVSS5.8AI score0.02135EPSS
Exploits1References3
Prion
Prionadded 2019/07/28 6:15 p.m.15 views

Directory traversal

Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. This vulnerability could allow remote authenticated attackers to replace a file on the server via the getAttachmentDirectoryForNewAttachment inpKey value...

5.5CVSS5.3AI score0.02135EPSS
Exploits1References3Affected Software1
CVE
CVEadded 2019/07/28 5:26 p.m.99 views

CVE-2019-14362

Openbravo ERP prior to 3.0PR19Q1.3 is affected by a Directory Traversal vulnerability. The issue allows remote authenticated attackers to replace a file on the server via the getAttachmentDirectoryForNewAttachment inpKey value. Affected component is Openbravo ERP (web application) with directory ...

5.5CVSS5.2AI score0.02135EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2019/07/28 5:26 p.m.22 views

CVE-2019-14362

Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. This vulnerability could allow remote authenticated attackers to replace a file on the server via the getAttachmentDirectoryForNewAttachment inpKey value...

5.3AI score0.02135EPSS
Exploits1References3
CNVD
CNVDadded 2017/06/08 12:0 a.m.1 views

Openbravo Business Suite SQL Injection Vulnerability

Openbravo Business Suite is a management and business process optimization solution from Openbravo Spain. A SQL injection vulnerability exists in Openbravo Business Suite version 3.0. A remote attacker can exploit this vulnerability to inject arbitrary SQL code...

8.8CVSS8.1AI score0.01277EPSS
Exploits0References1
Prion
Prionadded 2017/06/05 2:29 p.m.11 views

Sql injection

Openbravo Business Suite 3.0 is affected by SQL injection. This vulnerability could allow remote authenticated attackers to inject arbitrary SQL code...

6.5CVSS8AI score0.01277EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2017/06/05 2:29 p.m.1 views

CVE-2017-9437

Openbravo Business Suite 3.0 is affected by SQL injection. This vulnerability could allow remote authenticated attackers to inject arbitrary SQL code...

8.8CVSS6AI score0.01277EPSS
Exploits0References1
NVD
NVDadded 2017/06/05 2:29 p.m.14 views

CVE-2017-9437

Openbravo Business Suite 3.0 is affected by SQL injection. This vulnerability could allow remote authenticated attackers to inject arbitrary SQL code...

8.8CVSS8.8AI score0.01277EPSS
Exploits0References1
CVE
CVEadded 2017/06/05 2:0 p.m.36 views

CVE-2017-9437

Openbravo Business Suite 3.0 is affected by a SQL injection vulnerability that could allow remote authenticated attackers to inject arbitrary SQL code. The issue concerns the Openbravo Business Suite 3.0 product and is described as a SQL injection vulnerability (CVE-2017-9437). The available docu...

8.8CVSS8.6AI score0.01277EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2017/06/05 2:0 p.m.23 views

CVE-2017-9437

Openbravo Business Suite 3.0 is affected by SQL injection. This vulnerability could allow remote authenticated attackers to inject arbitrary SQL code...

8.8AI score0.01277EPSS
Exploits0References1
Packet Storm
Packet Stormadded 2016/01/11 12:0 a.m.39 views

OpenBravo Hibernate HQL Injection

Title: OpenBravo Hibernate HQL Injection Vulnerability Author: Sam Ng, HPE Software Security Research Team Vendor Patch: 3.0PR15Q3.4 and 3.0PR15Q4.1 Vendor Reference: https://issues.openbravo.com/view.php?id=31577, http://wiki.openbravo.com/wiki/ReleaseNotes/3.0PR15Q3.4,...

0.3AI score
Exploits0
NVD
NVDadded 2013/11/02 7:55 p.m.27 views

CVE-2013-3617

The XML API in Openbravo ERP 2.5, 3.0, and earlier allows remote authenticated users to read arbitrary files via an XML document with an external entity declaration in conjunction with an entity reference to /ws/dal/ADUser or other /ws/dal/XXX interfaces, related to an XML External Entity XXE iss...

3.5CVSS6.3AI score0.21074EPSS
Exploits3References3
Rows per page
Query Builder