Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18 matches found

RedhatCVE
RedhatCVEadded 2025/12/18 9:39 a.m.5 views

CVE-2025-14101

Authorization Bypass Through User-Controlled Key vulnerability in GG Soft Software Services Inc. PaperWork allows Exploitation of Trusted Identifiers.This issue affects PaperWork: from 5.2.0.9427 before 6.0...

7.1CVSS7AI score0.00038EPSS
Exploits0References1
NVD
NVDadded 2025/12/17 10:15 a.m.1 views

CVE-2025-14101

Authorization Bypass Through User-Controlled Key vulnerability in GG Soft Software Services Inc. PaperWork allows Exploitation of Trusted Identifiers. This issue affects PaperWork: from 5.2.0.9427 before 6.0...

7.1CVSS0.00038EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/12/17 9:11 a.m.1 views

CVE-2025-14101 IDOR in GG Soft's PaperWork

Authorization Bypass Through User-Controlled Key vulnerability in GG Soft Software Services Inc. PaperWork allows Exploitation of Trusted Identifiers. This issue affects PaperWork: from 5.2.0.9427 before 6.0...

7.1CVSS5.8AI score0.00038EPSS
Exploits0References2
CVE
CVEadded 2025/12/17 9:11 a.m.8 views

CVE-2025-14101

The CVE-2025-14101 entry concerns GG Soft Software Services Inc. PaperWork with an Authorization Bypass Through User-Controlled Key vulnerability. Reported across multiple sources (CVE entries, Red Hat advisory, and related enrichments) affecting PaperWork versions prior to 6.0, specifically 5.2....

7.1CVSS5.8AI score0.00038EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2025/12/17 9:11 a.m.3 views

CVE-2025-14101

Authorization Bypass Through User-Controlled Key vulnerability in GG Soft Software Services Inc. PaperWork allows Exploitation of Trusted Identifiers. This issue affects PaperWork: from 5.2.0.9427 before 6.0...

7.1CVSS5.8AI score0.00038EPSS
Exploits0References3Affected Software1
EUVD
EUVDadded 2025/12/17 9:11 a.m.1 views

EUVD-2025-203886

Authorization Bypass Through User-Controlled Key vulnerability in GG Soft Software Services Inc. PaperWork allows Exploitation of Trusted Identifiers.This issue affects PaperWork: from 5.2.0.9427 before 6.0...

7.1CVSS6.4AI score0.00038EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/12/17 9:11 a.m.24 views

CVE-2025-14101 IDOR in GG Soft's PaperWork

Authorization Bypass Through User-Controlled Key vulnerability in GG Soft Software Services Inc. PaperWork allows Exploitation of Trusted Identifiers. This issue affects PaperWork: from 5.2.0.9427 before 6.0...

7.1CVSS0.00038EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/12/17 12:0 a.m.1 views

GG Soft PaperWork 安全漏洞

GG Soft PaperWork is a look document management and process control software from GG Soft, Turkey. A security vulnerability exists in GG Soft PaperWork versions prior to 6.0 that stems from an authorization bypass via a user-controlled key, which could lead to the exploitation of trusted...

7.1CVSS6.6AI score0.00038EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/12/17 12:0 a.m.1 views

PT-2025-51822

Name of the Vulnerable Software and Affected Versions GG Soft Software Services Inc. PaperWork versions prior to 6.0 GG Soft Software Services Inc. PaperWork versions 5.2.0.9427 through 5.2.0.9427 Description An authorization bypass exists due to user-controlled keys, allowing exploitation of...

7.1CVSS6.6AI score0.00038EPSS
Exploits0References9
RedhatCVE
RedhatCVEadded 2025/11/08 1:57 p.m.2 views

CVE-2025-10968

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection', CWE - 564 - SQL Injection: Hibernate vulnerability in GG Soft Software Services Inc. PaperWork allows Blind SQL Injection, SQL Injection.This issue affects PaperWork: from 6.1.0.9390 before 6.1.0.9398...

8.8CVSS7.7AI score0.0004EPSS
Exploits0References1
NVD
NVDadded 2025/11/07 1:15 p.m.2 views

CVE-2025-10968

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection', CWE - 564 - SQL Injection: Hibernate vulnerability in GG Soft Software Services Inc. PaperWork allows Blind SQL Injection, SQL Injection. This issue affects PaperWork: from 6.1.0.9390 before 6.1.0.9398...

8.8CVSS0.0004EPSS
Exploits0References2
EUVD
EUVDadded 2025/11/07 1:8 p.m.1 views

EUVD-2025-38250

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection', CWE - 564 - SQL Injection: Hibernate vulnerability in GG Soft Software Services Inc. PaperWork allows Blind SQL Injection, SQL Injection.This issue affects PaperWork: from 6.1.0.9390 before 6.1.0.9398...

8.8CVSS7.2AI score0.0004EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2025/11/07 1:8 p.m.2 views

CVE-2025-10968

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection', CWE - 564 - SQL Injection: Hibernate vulnerability in GG Soft Software Services Inc. PaperWork allows Blind SQL Injection, SQL Injection. This issue affects PaperWork: from 6.1.0.9390 before 6.1.0.9398...

8.8CVSS5.6AI score0.0004EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2025/11/07 1:8 p.m.4 views

CVE-2025-10968 SQLi in GG Soft's PaperWork

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection', CWE - 564 - SQL Injection: Hibernate vulnerability in GG Soft Software Services Inc. PaperWork allows Blind SQL Injection, SQL Injection. This issue affects PaperWork: from 6.1.0.9390 before 6.1.0.9398...

8.8CVSS0.0004EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/11/07 1:8 p.m.1 views

CVE-2025-10968 SQLi in GG Soft's PaperWork

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection', CWE - 564 - SQL Injection: Hibernate vulnerability in GG Soft Software Services Inc. PaperWork allows Blind SQL Injection, SQL Injection. This issue affects PaperWork: from 6.1.0.9390 before 6.1.0.9398...

8.8CVSS5.6AI score0.0004EPSS
Exploits0References2
CVE
CVEadded 2025/11/07 1:8 p.m.8 views

CVE-2025-10968

CVE-2025-10968 concerns a SQL Injection in GG Soft PaperWork (versions 6.1.0.9390–6.1.0.9397) due to improper neutralization of special elements in SQL commands through the Hibernate layer. The vulnerability could enable Blind SQL Injection and standard SQL Injection. A fixed release is 6.1.0.939...

8.8CVSS5.6AI score0.0004EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/11/07 12:0 a.m.1 views

GG Soft PaperWork SQL注入漏洞

GG Soft PaperWork is a document management and process control software from GG Soft, Turkey. A SQL injection vulnerability exists in GG Soft PaperWork version 6.1.0.9390 up to and including version 6.1.0.9398. The vulnerability stems from the Hibernate framework not handling special elements in...

8.8CVSS7.9AI score0.0004EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/11/07 12:0 a.m.2 views

PT-2025-45420

Name of the Vulnerable Software and Affected Versions PaperWork versions 6.1.0.9390 through 6.1.0.9397 Description The software contains a flaw due to improper neutralization of special elements used in an SQL command, leading to a SQL injection issue. This impacts the application's ability to...

8.8CVSS8AI score0.0004EPSS
Exploits0References5
Rows per page
Query Builder