CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/12/12 8:32 p.m.•1 views

EUVD-2025-203115

A security vulnerability has been detected in Qualitor up to 8.24.73. The impacted element is an unknown function of the file /Qualitor/html/bc/bcdocumento9/biblioteca/request/viewDocumento.php. Such manipulation of the argument cdscript leads to cross site scripting. It is possible to launch the...

5.1CVSS5.2AI score0.00022EPSS

Exploits1References4

CNNVD•added 2025/12/12 12:0 a.m.•1 views

Qualitor 代码注入漏洞

Qualitor is a managed service process and centralized service platform from Qualitor, Inc. A code injection vulnerability exists in Qualitor 8.24.73 and earlier versions, which stems from incorrect manipulation of the parameter cdscript in the file...

6.1CVSS4.7AI score0.00022EPSS

Exploits1References3

OSV•added 2025/05/25 1:15 a.m.•0 views

CVE-2025-5139

A vulnerability was found in Qualitor 8.20/8.24. It has been rated as critical. Affected by this issue is some unknown functionality of the file /html/ad/adconexaooffice365/request/testaConexaoOffice365.php of the component Office 365-type Connection Handler. The manipulation of the argument...

8.1CVSS5.4AI score0.03272EPSS

Exploits1References5

NVD•added 2025/05/25 1:15 a.m.•10 views

CVE-2025-5139

8.1CVSS0.03272EPSS

Exploits1References5

CVE•added 2025/05/25 1:0 a.m.•56 views

CVE-2025-5139

Summary (MODE C): CVE-2025-5139 affects Qualitor 8.20 and 8.24. The vulnerability resides in the Office 365-type Connection Handler, specifically the file /html/ad/adconexaooffice365/request/testaConexaoOffice365.php, where manipulation of the nmconexao argument enables a command injection. It po...

8.1CVSS6AI score0.03272EPSS

Exploits1References5Affected Software1

RedhatCVE•added 2025/05/23 8:26 a.m.•5 views

CVE-2024-44849

Qualitor up to 8.24 is vulnerable to Remote Code Execution RCE via Arbitrary File Upload in checkAcesso.php...

9.8CVSS7.5AI score0.92073EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 7:31 a.m.•5 views

CVE-2024-48360

Qualitor v8.24 was discovered to contain a Server-Side Request Forgery SSRF via the component /request/viewValidacao.php...

7.5CVSS7.6AI score0.90962EPSS

Exploits3References1

RedhatCVE•added 2025/05/23 4:7 a.m.•4 views

CVE-2023-47253

Qualitor through 8.20 allows remote attackers to execute arbitrary code via PHP code in the html/ad/adpesquisasql/request/processVariavel.php gridValoresPopHidden parameter...

9.8CVSS8AI score0.93893EPSS

Exploits4References1

VulnCheck KEV•added 2024/10/08 12:0 a.m.•0 views

VulnCheck KEV: CVE-2024-44849

Qualitor up to 8.24 is vulnerable to Remote Code Execution RCE via Arbitrary File Upload in checkAcesso.php...

9.8CVSS5.8AI score0.92073EPSS

Exploits1References1

GithubExploit•added 2024/09/19 5:52 p.m.•133 views

Exploit for Command Injection in Qualitor

CVE-2023-47253 CVE-2023-47253 | Qualitor = 8.20 RCE De...

9.8CVSS9.9AI score0.93893EPSS

Exploits4

GithubExploit•added 2024/09/19 2:6 p.m.•79 views

Exploit for Command Injection in Qualitor

CVE-2023-47253 | Qualitor povoaVoComArray$REQUEST; if in...

9.8CVSS9.7AI score0.93893EPSS

Exploits4

Positive Technologies•added 2023/11/06 12:0 a.m.•4 views

PT-2023-30394 · Qualitor · Qualitor

Name of the Vulnerable Software and Affected Versions: Qualitor versions prior to 8.21 Description: The issue allows remote attackers to execute arbitrary code. This can be achieved by injecting PHP code into the gridValoresPopHidden parameter in the...

9.8CVSS9.5AI score0.93893EPSS

Exploits4References11

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by