Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/09/19 1:27 p.m.5 views

CVE-2025-10592

A security vulnerability has been detected in itsourcecode Online Public Access Catalog OPAC 1.0. This impacts an unknown function of the file mysearch.php of the component POST Parameter Handler. Such manipulation of the argument searchfield/searchtext leads to sql injection. The attack may be...

8.8CVSS6.9AI score0.00351EPSS
Exploits1References1
NVD
NVD
added 2025/09/17 1:15 p.m.5 views

CVE-2025-10592

A security vulnerability has been detected in itsourcecode Online Public Access Catalog OPAC 1.0. This impacts an unknown function of the file mysearch.php of the component POST Parameter Handler. Such manipulation of the argument searchfield/searchtext leads to sql injection. The attack may be...

8.8CVSS0.00351EPSS
Exploits1References5
CVE
CVE
added 2025/09/17 1:2 p.m.15 views

CVE-2025-10592

CVE-2025-10592 affects itsourcecode Online Public Access Catalog OPAC 1.0. the vulnerability resides in the mysearch.php POST Parameter Handler where manipulating search_field/search_text enables SQL injection. exploitation appears remote and publicly disclosed; multiple sources corroborate an SQ...

8.8CVSS6.6AI score0.00351EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2025/01/28 12:0 a.m.5 views

AutoLib Software Systems OPAC 安全漏洞

AutoLib Software Systems OPAC is a library management software from AutoLib Software Systems. A security vulnerability exists in AutoLib Software Systems OPAC version v20.10, which stems from the exposure of multiple API keys in the code. An attacker could use these keys to access back-end APIs o...

7.5CVSS7.6AI score0.00531EPSS
Exploits1References3
OSV
OSV
added 2022/10/27 2:15 p.m.2 views

CVE-2022-42991

A stored cross-site scripting XSS vulnerability in Simple Online Public Access Catalog v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Edit Account Full Name field...

5.4CVSS5.9AI score0.00591EPSS
Exploits1References3
CNVD
CNVD
added 2020/03/21 12:0 a.m.3 views

Logic flaw vulnerability in OPAC system of Beijing Chuangxun Future Software Technology Co.

OPAC system is a digital resource remote management system, commonly used in various university libraries and social libraries. There is a logic flaw vulnerability in the OPAC system of Beijing Chuangxun Future Software Technology Co., Ltd, which can be exploited by attackers to obtain sensitive...

6.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2018/08/28 1:24 p.m.15 views

CVE-2018-15869

An Amazon Web Services AWS developer who does not specify the --owners flag when describing images via AWS CLI, and therefore not properly validating source software per AWS recommended security best practices, may unintentionally load an undesired and potentially malicious Amazon Machine Image A...

5.3CVSS3.1AI score0.01801EPSS
Exploits0References2
OSV
OSV
added 2018/08/25 12:29 a.m.11 views

CVE-2018-15869

An Amazon Web Services AWS developer who does not specify the --owners flag when describing images via AWS CLI, and therefore not properly validating source software per AWS recommended security best practices, may unintentionally load an undesired and potentially malicious Amazon Machine Image A...

5.3CVSS7AI score
Exploits0References2
Rows per page
Query Builder