Lucene search
K

68 matches found

Nuclei
Nuclei
added 8 hours ago49 views

Qualitor <= 8.20 - Remote Code Execution

Qualitor through 8.20 allows remote attackers to execute arbitrary code via PHP code in the html/ad/adpesquisasql/request/processVariavel.php gridValoresPopHidden parameter. id: CVE-2023-47253 info: name: Qualitor = 8.20 - Remote Code Execution author: s4e-io severity: critical description: |...

9.8CVSS7.3AI score0.14422EPSS
Exploits4References3
Nuclei
Nuclei
added 8 hours ago24 views

Qualitor <= v8.24 - Server-Side Request Forgery

Qualitor v8.24 was discovered to contain a Server-Side Request Forgery SSRF via the component /request/viewValidacao.php. id: CVE-2024-48360 info: name: Qualitor = v8.24 - Server-Side Request Forgery author: s4e-io severity: high description: | Qualitor v8.24 was discovered to contain a Server-Si...

7.5CVSS6AI score0.03905EPSS
Exploits3References3
Nuclei
Nuclei
added yesterday20 views

Qualitor <= 8.24 - Remote Code Execution

Qualitor up to 8.24 is vulnerable to Remote Code Execution RCE via Arbitrary File Upload in checkAcesso.php. id: CVE-2024-44849 info: name: Qualitor = 8.24 - Remote Code Execution author: s4e-io severity: critical description: | Qualitor up to 8.24 is vulnerable to Remote Code Execution RCE via...

9.8CVSS6.2AI score0.46301EPSS
Exploits1References5
VulnCheck KEV
VulnCheck KEV
added 2026/03/24 12:0 a.m.19 views

VulnCheck KEV: CVE-2023-47253

Qualitor through 8.20 allows remote attackers to execute arbitrary code via PHP code in the html/ad/adpesquisasql/request/processVariavel.php gridValoresPopHidden parameter...

9.8CVSS6.2AI score0.14422EPSS
In wildExploits4References12
RedhatCVE
RedhatCVE
added 2025/12/13 8:41 p.m.6 views

CVE-2025-14580

A security vulnerability has been detected in Qualitor up to 8.24.73. The impacted element is an unknown function of the file /Qualitor/html/bc/bcdocumento9/biblioteca/request/viewDocumento.php. Such manipulation of the argument cdscript leads to cross site scripting. It is possible to launch the...

6.1CVSS5.6AI score0.00216EPSS
Exploits1References1
OSV
OSV
added 2025/12/12 9:15 p.m.4 views

CVE-2025-14580

A security vulnerability has been detected in Qualitor up to 8.24.73. The impacted element is an unknown function of the file /Qualitor/html/bc/bcdocumento9/biblioteca/request/viewDocumento.php. Such manipulation of the argument cdscript leads to cross site scripting. It is possible to launch the...

6.1CVSS4.2AI score0.00216EPSS
Exploits1References3
NVD
NVD
added 2025/12/12 9:15 p.m.5 views

CVE-2025-14580

A security vulnerability has been detected in Qualitor up to 8.24.73. The impacted element is an unknown function of the file /Qualitor/html/bc/bcdocumento9/biblioteca/request/viewDocumento.php. Such manipulation of the argument cdscript leads to cross site scripting. It is possible to launch the...

6.1CVSS0.00216EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/12/12 8:32 p.m.28 views

CVE-2025-14580 Qualitor viewDocumento.php cross site scripting

A security vulnerability has been detected in Qualitor up to 8.24.73. The impacted element is an unknown function of the file /Qualitor/html/bc/bcdocumento9/biblioteca/request/viewDocumento.php. Such manipulation of the argument cdscript leads to cross site scripting. It is possible to launch the...

5.1CVSS0.00216EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/12/12 8:32 p.m.5 views

CVE-2025-14580 Qualitor viewDocumento.php cross site scripting

A security vulnerability has been detected in Qualitor up to 8.24.73. The impacted element is an unknown function of the file /Qualitor/html/bc/bcdocumento9/biblioteca/request/viewDocumento.php. Such manipulation of the argument cdscript leads to cross site scripting. It is possible to launch the...

5.1CVSS3.9AI score0.00216EPSS
Exploits1References3
EUVD
EUVD
added 2025/12/12 8:32 p.m.6 views

EUVD-2025-203115

A security vulnerability has been detected in Qualitor up to 8.24.73. The impacted element is an unknown function of the file /Qualitor/html/bc/bcdocumento9/biblioteca/request/viewDocumento.php. Such manipulation of the argument cdscript leads to cross site scripting. It is possible to launch the...

5.1CVSS5.2AI score0.00216EPSS
Exploits1References4
CVE
CVE
added 2025/12/12 8:32 p.m.14 views

CVE-2025-14580

Summary: CVE-2025-14580 affects Qualitor up to 8.24.73. The vulnerability lies in an unknown function in /Qualitor/html/bc/bcdocumento9/biblioteca/request/viewDocumento.php where manipulation of the cdscript argument enables cross-site scripting. It can be exploited remotely and has been publicly...

6.1CVSS5.3AI score0.00216EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/12 12:0 a.m.6 views

PT-2025-50978

A security vulnerability has been detected in Qualitor up to 8.24.73. The impacted element is an unknown function of the file /Qualitor/html/bc/bcdocumento9/biblioteca/request/viewDocumento.php. Such manipulation of the argument cdscript leads to cross site scripting. It is possible to launch the...

5.1CVSS5.6AI score0.00216EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/12/12 12:0 a.m.5 views

Qualitor 代码注入漏洞

Qualitor is a managed service process and centralized service platform from Qualitor, Inc. A code injection vulnerability exists in Qualitor 8.24.73 and earlier versions, which stems from incorrect manipulation of the parameter cdscript in the file...

6.1CVSS4.7AI score0.00216EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/12/04 6:17 p.m.26 views

CVE-2025-13792

A security flaw has been discovered in Qualitor up to 8.20.104/8.24.97. Affected by this vulnerability is the function eval of the file /html/st/stdeslocamento/request/getResumo.php. Performing a manipulation of the argument passageiros results in code injection. Remote exploitation of the attack...

7.5CVSS7AI score0.00402EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/30 6:30 p.m.4 views

EUVD-2025-199935

A security flaw has been discovered in Qualitor 8.20/8.24. Affected by this vulnerability is the function eval of the file /html/st/stdeslocamento/request/getResumo.php. Performing manipulation of the argument passageiros results in code injection. Remote exploitation of the attack is possible. T...

7.5CVSS7.2AI score0.00402EPSS
Exploits0References5
NVD
NVD
added 2025/11/30 4:15 p.m.7 views

CVE-2025-13792

A security flaw has been discovered in Qualitor up to 8.20.104/8.24.97. Affected by this vulnerability is the function eval of the file /html/st/stdeslocamento/request/getResumo.php. Performing a manipulation of the argument passageiros results in code injection. Remote exploitation of the attack...

7.5CVSS0.00402EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2025/11/30 4:2 p.m.1 views

CVE-2025-13792

A security flaw has been discovered in Qualitor up to 8.20.104/8.24.97. Affected by this vulnerability is the function eval of the file /html/st/stdeslocamento/request/getResumo.php. Performing a manipulation of the argument passageiros results in code injection. Remote exploitation of the attack...

7.5CVSS5.1AI score0.00402EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/11/30 4:2 p.m.5 views

CVE-2025-13792 Qualitor getResumo.php eval code injection

A security flaw has been discovered in Qualitor up to 8.20.104/8.24.97. Affected by this vulnerability is the function eval of the file /html/st/stdeslocamento/request/getResumo.php. Performing a manipulation of the argument passageiros results in code injection. Remote exploitation of the attack...

7.5CVSS7AI score0.00402EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/11/30 4:2 p.m.12 views

CVE-2025-13792 Qualitor getResumo.php eval code injection

A security flaw has been discovered in Qualitor up to 8.20.104/8.24.97. Affected by this vulnerability is the function eval of the file /html/st/stdeslocamento/request/getResumo.php. Performing a manipulation of the argument passageiros results in code injection. Remote exploitation of the attack...

7.5CVSS0.00402EPSS
Exploits0References6
CVE
CVE
added 2025/11/30 4:2 p.m.17 views

CVE-2025-13792

Qualitor is affected by a code injection vulnerability in the getResumo.php handler under /html/st/stdeslocamento/request/. The flaw arises from unsafe manipulation of the passageiros argument to the eval() function, enabling remote code execution. Multiple sources (Qualitor advisories and third-...

7.5CVSS7AI score0.00402EPSS
Exploits0References6
Rows per page
Query Builder