15 matches found
EUVD-2025-23417
Malicious code in bioql PyPI...
EUVD-2025-23416
Malicious code in bioql PyPI...
CVE-2025-6077
Partner Software's Partner Software Product and corresponding Partner Web application use the same default username and password for the administrator account across all versions...
CVE-2025-6077
Partner Software's Partner Software Product and corresponding Partner Web application use the same default username and password for the administrator account across all versions...
CVE-2025-6078
Partner Software's Partner Software application and Partner Web application allows an authenticated user to add notes on the 'Notes' page when viewing a job but does not completely sanitize input, making it possible to add notes with HTML tags and JavaScript, enabling an attacker to add a note...
CVE-2025-6078
CVE-2025-6078 affects Partner Software’s Partner Software and Partner Web applications. An authenticated user can submit notes on the Notes page in a job view, and input is not fully sanitized, allowing HTML/JavaScript in notes and resulting in stored XSS. Public details from multiple sources con...
CVE-2025-6078 CVE-2025-6078
Partner Software's Partner Software application and Partner Web application allows an authenticated user to add notes on the 'Notes' page when viewing a job but does not completely sanitize input, making it possible to add notes with HTML tags and JavaScript, enabling an attacker to add a note...
CVE-2025-6077
CVE-2025-6077 concerns Partner Software’s Partner Software Product and Partner Web application, where the administrator account uses the same default username and password across all versions. Multiple sources confirm the issue can enable unauthorized admin access and, per CERT/industry notes, ma...
CVE-2025-6077 CVE-2025-6077
Partner Software's Partner Software Product and corresponding Partner Web application use the same default username and password for the administrator account across all versions...
CVE-2025-6077 CVE-2025-6077
Partner Software's Partner Software Product and corresponding Partner Web application use the same default username and password for the administrator account across all versions...
Partner Software和Partner Software Partner Web 安全漏洞
Partner Software and Partner Software Partner Web are both products of Partner Software, a U.S.-based company.Partner Software is a geographic information system application.Partner Software Partner Web is a back-end system that provides review of reports on the Partner Software is a GIS...
Partner Software和Partner Software Partner Web 安全漏洞
Partner Software and Partner Software Partner Web are both products of Partner Software, a U.S.-based company.Partner Software is a geographic information system application.Partner Software Partner Web is a back-end system that provides review of reports on the Partner Software is a GIS...
Partner Software/Partner Web does not sanitize Report files and Note content, allowing for XSS and RCE
Overview Partner Software and Partner Web, both products of their namesake company, Partner Software, fail to sanitize report or note files, allowing for XSS attacks. Partner Software is subdivision of N. Harris Computer Corporation and is a field application development company, with products...
Partner Software和Partner Software Partner Web 安全漏洞
Partner Software and Partner Software Partner Web are both products of Partner Software, a U.S.-based company.Partner Software is a geographic information system application.Partner Software Partner Web is a back-end system that provides review of reports on the Partner Software is a GIS...
SQL Injection Vulnerability in Store Life Cycle Control System of Nanjing Ponte Software Technology Co.
NanjingPartnerSoftwareTechnologyCo.,Ltd. wisdom. Chain is a software sales, development and service in one of the professional software company. NanjingPartnerSoftwareTechnologyCo., Ltd. store lifecycle management and control system there is a SQL injection vulnerability, an attacker can use the...