Lucene search
+L

32 matches found

NVD
NVD
added 9 hours ago6 views

CVE-2026-7189

Insertion of sensitive information into sent data vulnerability in Proliz Software Ltd. Co. Proliz's OBS allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Proliz's OBS: before v3.6.0...

7.5CVSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 9 hours ago4 views

CVE-2026-7189

Insertion of sensitive information into sent data vulnerability in Proliz Software Ltd. Co. Proliz's OBS allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Proliz's OBS: before v3.6.0...

7.5CVSS5.2AI score
Exploits0References2
CVE
CVE
added 9 hours ago8 views

CVE-2026-7189

CVE-2026-7189 affects Proliz OBS prior to v3.6.0. The issue is an insertion of sensitive information into sent data caused by functionality not being properly constrained by ACLs, enabling a network-remote impact with high confidentiality risk and low integrity impact. Affected component: Proliz ...

7.5CVSS5.2AI score
Exploits0References1
Cvelist
Cvelist
added 9 hours ago11 views

CVE-2026-7189 Sensitive Data Exposure in Proliz's OBS

Insertion of sensitive information into sent data vulnerability in Proliz Software Ltd. Co. Proliz's OBS allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Proliz's OBS: before v3.6.0...

7.5CVSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/18 8:21 a.m.10 views

CVE-2025-14347

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. OBS Student Affairs Information System0 allows Reflected XSS.This issue affects OBS Student Affairs Information System0: before 26.5009...

6.3CVSS6.4AI score0.00178EPSS
Exploits0References1
NVD
NVD
added 2025/12/17 9:15 a.m.8 views

CVE-2025-14347

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. OBS Student Affairs Information System0 allows Reflected XSS. This issue affects OBS Student Affairs Information System0: before 26.5009...

6.3CVSS0.00178EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/17 8:12 a.m.7 views

CVE-2025-14347 Reflected XSS in Proliz's OBS

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. OBS Student Affairs Information System0 allows Reflected XSS. This issue affects OBS Student Affairs Information System0: before 26.5009...

6.3CVSS5.8AI score0.00178EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/17 8:12 a.m.33 views

CVE-2025-14347 Reflected XSS in Proliz's OBS

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. OBS Student Affairs Information System0 allows Reflected XSS. This issue affects OBS Student Affairs Information System0: before 26.5009...

6.3CVSS0.00178EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/17 8:12 a.m.7 views

EUVD-2025-203885

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. OBS Student Affairs Information System0 allows Reflected XSS.This issue affects OBS Student Affairs Information System0: before 26.5009...

6.3CVSS5.9AI score0.00178EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/06 3:31 p.m.6 views

EUVD-2025-37982

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. Co. OBS Student Affairs Information System allows Stored XSS.This issue affects OBS Student Affairs Information System: before 25.0401...

8.9CVSS5.5AI score0.00246EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/06 2:51 p.m.10 views

CVE-2025-11956 XSS in Proliz's OBS

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. Co. OBS Student Affairs Information System allows Stored XSS. This issue affects OBS Student Affairs Information System: before 25.0401...

8.9CVSS0.00246EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/06 2:51 p.m.4 views

CVE-2025-11956 XSS in Proliz's OBS

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. Co. OBS Student Affairs Information System allows Stored XSS. This issue affects OBS Student Affairs Information System: before 25.0401...

8.9CVSS5.8AI score0.00246EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/23 8:36 a.m.12 views

CVE-2025-10914 Reflected XSS in Proliz's OBS

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. Co. OBS Student Affairs Information System allows Reflected XSS. This issue affects OBS Student Affairs Information System: before V26.0401...

7.6CVSS0.00235EPSS
Exploits0References2
CVE
CVE
added 2025/10/23 8:36 a.m.13 views

CVE-2025-10914

CVE-2025-10914 is a Reflected XSS vulnerability in Proliz Software Ltd. Co. OBS (Student Affairs Information System) prior to version V26.0401, caused by improper input neutralization during web page generation. Affected component is OBS web rendering where user-supplied input can be reflected in...

7.6CVSS5.4AI score0.00235EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/23 8:36 a.m.3 views

CVE-2025-10914 Reflected XSS in Proliz's OBS

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. Co. OBS Student Affairs Information System allows Reflected XSS. This issue affects OBS Student Affairs Information System: before V26.0401...

7.6CVSS5.4AI score0.00235EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/10/23 8:36 a.m.5 views

CVE-2025-10914

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. Co. OBS Student Affairs Information System allows Reflected XSS. This issue affects OBS Student Affairs Information System: before V26.0401...

7.6CVSS5.5AI score0.00235EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-23949

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00337EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/24 8:21 a.m.8 views

CVE-2025-0875

Authorization Bypass Through User-Controlled Key vulnerability in PROLIZ Computer Software Hardware Service Trade Ltd. Co. OBS Student Affairs Information System allows Parameter Injection.This issue affects OBS Student Affairs Information System: before v26.0328...

4.2CVSS6.9AI score0.00376EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/22 8:2 a.m.4 views

CVE-2025-0875 IDOR in Proliz Software's OBS

Authorization Bypass Through User-Controlled Key vulnerability in PROLIZ Computer Software Hardware Service Trade Ltd. Co. OBS Student Affairs Information System allows Parameter Injection. This issue affects OBS Student Affairs Information System: before v26.0328...

6.5CVSS5.4AI score0.00376EPSS
Exploits0References2
CVE
CVE
added 2025/09/22 8:2 a.m.14 views

CVE-2025-0875

Summary: CVE-2025-0875 affects PROLIZ OBS (Student Affairs Information System) prior to version 26.0328. The issue is an authorization bypass caused by a user-controlled key, enabling parameter injection. The vulnerability impact includes a potential bypass of access controls with high privileges...

6.5CVSS5.4AI score0.00376EPSS
Exploits0References2
Rows per page
Query Builder