Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 12:30 p.m.12 views

CVE-2023-40361

SECUDOS Qiata DOMOS OS 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To exploit this, an attacker needs access as a low-privileged user to the underlying DOMOS system. Every user on the system has write permission for previewRm.sh, which is executed by the root user...

7.8CVSS6.9AI score0.00078EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2020-6447

Malware in sbrugna...

6.1CVSS6.3AI score0.00615EPSS
Exploits2References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2023-44932

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00078EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 4:20 p.m.6 views

CVE-2020-14294

An issue was discovered in Secudos Qiata FTA 1.70.19. The comment feature allows persistent XSS that is executed when reading transfer comments or the global notice board...

6.1CVSS6AI score0.00615EPSS
Exploits2
NVD
NVDadded 2023/10/20 6:15 a.m.11 views

CVE-2023-40361

SECUDOS Qiata DOMOS OS 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To exploit this, an attacker needs access as a low-privileged user to the underlying DOMOS system. Every user on the system has write permission for previewRm.sh, which is executed by the root user...

7.8CVSS7.7AI score0.00078EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2023/10/20 6:15 a.m.4 views

CVE-2023-40361

SECUDOS Qiata DOMOS OS 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To exploit this, an attacker needs access as a low-privileged user to the underlying DOMOS system. Every user on the system has write permission for previewRm.sh, which is executed by the root user...

7.8CVSS5.8AI score0.00078EPSS
Exploits1References2
OSV
OSVadded 2023/10/20 6:15 a.m.3 views

CVE-2023-40361

SECUDOS Qiata DOMOS OS 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To exploit this, an attacker needs access as a low-privileged user to the underlying DOMOS system. Every user on the system has write permission for previewRm.sh, which is executed by the root user...

7.8CVSS5.8AI score0.00078EPSS
Exploits1References1
Prion
Prionadded 2023/10/20 6:15 a.m.16 views

Design/Logic Flaw

SECUDOS Qiata DOMOS OS 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To exploit this, an attacker needs access as a low-privileged user to the underlying DOMOS system. Every user on the system has write permission for previewRm.sh, which is executed by the root user...

4.3CVSS7.6AI score0.00078EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2023/10/20 12:0 a.m.38 views

CVE-2023-40361

CVE-2023-40361 affects SECUDOS Qiata (DOMOS OS) 4.13. The issue arises from insecure permissions on the previewRm.sh daily cronjob: every user on the system has write access to previewRm.sh, which is executed by root, enabling a low-privilege user to modify the script and potentially escalate pri...

7.8CVSS7.6AI score0.00078EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/10/20 12:0 a.m.16 views

CVE-2023-40361

SECUDOS Qiata DOMOS OS 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To exploit this, an attacker needs access as a low-privileged user to the underlying DOMOS system. Every user on the system has write permission for previewRm.sh, which is executed by the root user...

6.9AI score0.00078EPSS
Exploits1References1
Cvelist
Cvelistadded 2023/10/20 12:0 a.m.15 views

CVE-2023-40361

SECUDOS Qiata DOMOS OS 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To exploit this, an attacker needs access as a low-privileged user to the underlying DOMOS system. Every user on the system has write permission for previewRm.sh, which is executed by the root user...

7.8AI score0.00078EPSS
Exploits1References1
CNNVD
CNNVDadded 2023/10/20 12:0 a.m.2 views

secudos qiata fta security breach

secudos qiata fta is a secure file transfer software from Secudos Germany. The software is suitable for file operations between teams and complies with the GDPR protocol for data security. A security vulnerability exists in SECUDOS Qiata version 4.13, which stems from the presence of insecure...

7.8CVSS6.8AI score0.00078EPSS
Exploits1References2
NVD
NVDadded 2020/10/02 9:15 a.m.12 views

CVE-2020-14294

An issue was discovered in Secudos Qiata FTA 1.70.19. The comment feature allows persistent XSS that is executed when reading transfer comments or the global notice board...

6.1CVSS0.00615EPSS
Exploits2References5
OSV
OSVadded 2020/10/02 9:15 a.m.2 views

CVE-2020-14294

An issue was discovered in Secudos Qiata FTA 1.70.19. The comment feature allows persistent XSS that is executed when reading transfer comments or the global notice board...

6.1CVSS6.4AI score0.00615EPSS
Exploits2References5
Prion
Prionadded 2020/10/02 9:15 a.m.11 views

Design/Logic Flaw

An issue was discovered in Secudos Qiata FTA 1.70.19. The comment feature allows persistent XSS that is executed when reading transfer comments or the global notice board...

4.3CVSS6AI score0.00615EPSS
Exploits2References5Affected Software1
Cvelist
Cvelistadded 2020/10/02 8:15 a.m.13 views

CVE-2020-14294

An issue was discovered in Secudos Qiata FTA 1.70.19. The comment feature allows persistent XSS that is executed when reading transfer comments or the global notice board...

6AI score0.00615EPSS
Exploits2References5
CVE
CVEadded 2020/10/02 8:15 a.m.50 views

CVE-2020-14294

CVE-2020-14294 concerns Qiata FTA 1.70.19. The issue is a persistent cross-site scripting (XSS) vulnerability in the comment feature, triggered when reading transfer comments or the global notice board due to insufficient input validation. Affected version: Qiata FTA ≤ 1.70.19. Public advisory SY...

6.1CVSS5.9AI score0.00615EPSS
Exploits2References5Affected Software1
Packet Storm
Packet Stormadded 2020/09/30 12:0 a.m.193 views

Qiata FTA 1.70.19 Cross Site Scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2020-024 Product: Qiata FTA Manufacturer: Secudos GmbH Affected Versions: ' by flipping the direction of the special character. Also, quotation marks are escaped properly. An attacker can use the behavior to construct a malicious...

0.2AI score0.00615EPSS
Exploits2
Rows per page
Query Builder