Lucene search
K

43 matches found

Tenable Nessus
Tenable Nessus
added 2026/02/05 12:0 a.m.16 views

BeyondTrust Privilege Management for Windows <= 25.7 Anti-Tamper Bypass (BT26-01)

The version of BeyondTrust Privilege Management for Windows installed on the remote host is prior to 25.8. It is, therefore, affected by a vulnerability as referenced in the BT26-01 advisory. - Under certain conditions, a local authenticated user with elevated privileges may be able to bypass the...

6.8CVSS5.5AI score0.0012EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 12:31 p.m.7 views

CVE-2023-40817

OpenCRX version 5.2.0 is vulnerable to HTML injection via the Product Configuration Name Field...

6.1CVSS6.9AI score0.00463EPSS
Exploits1References1
CVE
CVE
added 2025/10/31 12:28 p.m.10 views

CVE-2025-4952

CVE-2025-4952 involves tampering with registry entries that could prevent ESET security products for Windows from starting on the next system startup or allow unauthorized changes to the product configuration. Connected documents corroborate the registry-tampering theme affecting ESET products, b...

6.8CVSS6.5AI score0.00123EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/29 12:0 a.m.4 views

Grupo Castilla Epsilon RH 安全漏洞

Grupo Castilla Epsilon RH is a human resource management software from the Spanish company Grupo Castilla. A security vulnerability exists in Grupo Castilla Epsilon RH that stems from a failure to path... /epsilonnet/License/About.aspx to enforce access control, which could lead an attacker to...

6.9CVSS6.3AI score0.00278EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-6293

Malware in sbrugna...

9.3CVSS6.1AI score0.08121EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-10422

Malicious code in bioql PyPI...

7.5CVSS9.2AI score0.00532EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-2934

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00463EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-39399

Malicious code in bioql PyPI...

7.5CVSS7.8AI score0.00283EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/11 9:56 a.m.3 views

CVE-2025-29870

Missing authentication for critical function vulnerability exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a remote unauthenticated attacker may obtain the product configuration information including authentication information...

7.5CVSS7.2AI score0.00532EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:28 a.m.8 views

CVE-2024-42022

An incorrect permission assignment vulnerability allows an attacker to modify product configuration files...

7.5CVSS6.8AI score0.00283EPSS
Exploits0References1
OSV
OSV
added 2024/09/07 5:15 p.m.3 views

CVE-2024-42022

An incorrect permission assignment vulnerability allows an attacker to modify product configuration files...

5.3CVSS5.8AI score0.00283EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/07 4:11 p.m.20 views

CVE-2024-42022

An incorrect permission assignment vulnerability allows an attacker to modify product configuration files...

7.5CVSS6.8AI score0.00283EPSS
Exploits0References1
Veracode
Veracode
added 2023/11/21 11:15 a.m.17 views

Cross Site Scripting (XSS)

org.opencrx: opencrx-core-models is vulnerable to HTML Injection. The vulnerability is due to a lack of proper input sanitization in the Product Configuration Name Field. This allows an attacker to inject malicious HTML into the application...

6.1CVSS6.7AI score0.00463EPSS
Exploits1References2Affected Software1
Github Security Blog
Github Security Blog
added 2023/11/18 6:30 a.m.26 views

Cross-site Scripting in OpenCRX

OpenCRX version 5.2.0 is vulnerable to HTML injection via the Product Configuration Name Field...

6.1CVSS7AI score0.00463EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/11/18 4:15 a.m.20 views

CVE-2023-40817

OpenCRX version 5.2.0 is vulnerable to HTML injection via the Product Configuration Name Field...

6.1CVSS6.4AI score0.00463EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/11/18 4:15 a.m.3 views

CVE-2023-40817

OpenCRX version 5.2.0 is vulnerable to HTML injection via the Product Configuration Name Field...

6.1CVSS6.3AI score0.00463EPSS
Exploits1References2
NVD
NVD
added 2023/11/18 4:15 a.m.17 views

CVE-2023-40817

OpenCRX version 5.2.0 is vulnerable to HTML injection via the Product Configuration Name Field...

6.1CVSS0.00463EPSS
Exploits1References1
Prion
Prion
added 2023/11/18 4:15 a.m.15 views

Design/Logic Flaw

OpenCRX version 5.2.0 is vulnerable to HTML injection via the Product Configuration Name Field...

5.8CVSS7.2AI score0.00463EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2023/11/18 12:0 a.m.3 views

OpenCRX Security Vulnerabilities

openCRX is an open source Crm software. A security vulnerability exists in OpenCRX version 5.2.0, which originated from a vulnerability that allows attackers to perform HTML injection attacks via the Product Configuration Name field...

6.1CVSS7AI score0.00463EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/11/18 12:0 a.m.3 views

PT-2023-27654 · Opencrx · Opencrx

Name of the Vulnerable Software and Affected Versions: OpenCRX version 5.2.0 Description: The issue allows for HTML injection via the Product Configuration Name Field. Recommendations: For OpenCRX version 5.2.0, update to a version that fixes this issue, if available. As a temporary workaround,...

6.1CVSS6.3AI score0.00463EPSS
Exploits1References4
Rows per page
Query Builder