68 matches found
PT-2024-33089 · Qualitor · Qualitor
Name of the Vulnerable Software and Affected Versions: Qualitor version 8.24 Description: The issue is a remote code execution RCE vulnerability. It can be exploited via the gridValoresPopHidden parameter. Recommendations: For Qualitor version 8.24, avoid using the gridValoresPopHidden parameter...
CVE-2024-48359
Qualitor v8.24 contains a remote code execution (RCE) vulnerability via the gridValoresPopHidden parameter. Affected software is Qualitor (v8.24); underlying root cause is not detailed in the provided documents. Impact is high (CVE-2024-48359, CVSS 3.1: 9.8). Remediation/status: PT-Security notes...
Qualitor 安全漏洞
Qualitor is a managed service process and centralized service platform from Qualitor, Inc. A security vulnerability exists in Qualitor version v8.24, which originates from the component /request/viewValidacao.php and is vulnerable to server-side request forgery attacks...
Qualitor 安全漏洞
Qualitor is a managed service process and centralized service platform from Qualitor, Inc. A security vulnerability exists in Qualitor version v8.24, which stems from the gridValoresPopHidden parameter and is vulnerable to remote code execution attacks...
CVE-2024-48359
Qualitor v8.24 was discovered to contain a remote code execution RCE vulnerability via the gridValoresPopHidden parameter...
CVE-2024-48360
Qualitor v8.24 was discovered to contain a Server-Side Request Forgery SSRF via the component /request/viewValidacao.php...
PT-2024-33091 · Qualitor · Qualitor
Name of the Vulnerable Software and Affected Versions: Qualitor versions 8.24 and below Description: The issue is related to a Server-Side Request Forgery SSRF in the component /request/viewValidacao.php. This allows for an unauthenticated server-side request forgery vulnerability. Recommendation...
CVE-2024-48359
Qualitor v8.24 was discovered to contain a remote code execution RCE vulnerability via the gridValoresPopHidden parameter...
Qualitor 8.24 Server-Side Request Forgery
CVE-2024-48360 | Qualitor = v8.24 Unauthenticated SSRF Description Qualitor is a platform for business process management, and this system is present in various companies in Brazil that can be identified simply by using Google dorking. Our team identified a vulnerability in the application...
CVE-2024-48360
Qualitor ≤ v8.24 is affected by an unauthenticated Server-Side Request Forgery via /request/viewValidacao.php. The vulnerability (CVE-2024-48360) allows forcing the server to make arbitrary requests, potentially probing internal resources. CVSSv3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N (base 7.5)....
Exploit for Server-Side Request Forgery in Qualitor
CVE-2024-48360 | Qualitor = v8.24 Unauthenticated SSRF CVE-20...
VulnCheck KEV: CVE-2024-44849
Qualitor up to 8.24 is vulnerable to Remote Code Execution RCE via Arbitrary File Upload in checkAcesso.php...
Exploit for Command Injection in Qualitor
CVE-2023-47253 CVE-2023-47253 | Qualitor = 8.20 RCE De...
Exploit for Command Injection in Qualitor
CVE-2023-47253 | Qualitor povoaVoComArray$REQUEST; if in...
CVE-2024-44849
Qualitor up to 8.24 is vulnerable to Remote Code Execution RCE via Arbitrary File Upload in checkAcesso.php...
CVE-2024-44849
Qualitor up to 8.24 is vulnerable to Remote Code Execution RCE via Arbitrary File Upload in checkAcesso.php...
Qualitor 安全漏洞
Qualitor is a managed service process and centralized service platform from Qualitor, Inc. A security vulnerability exists in Qualitor version 8.24 and earlier, which stems from vulnerability to a Remote Code Execution RCE attack that can be exploited by an attacker via an arbitrary file upload i...
CVE-2024-44849
Qualitor up to 8.24 is vulnerable to Remote Code Execution RCE via Arbitrary File Upload in checkAcesso.php...
PT-2024-31278 · Qualitor · Qualitor
Name of the Vulnerable Software and Affected Versions: Qualitor versions up to 8.24 Description: The issue concerns Remote Code Execution RCE via Arbitrary File Upload in the checkAcesso.php file. This allows for the execution of remote code, potentially leading to unauthorized access and control...
CVE-2024-44849
Qualitor # Answer with one JSON object as required. The insight is in Markdown format and concise. If you need a shorter version, I can provide it. However, ensure it adheres to the given structure. Nonetheless, this retains all supported factual details from the documents. If you'd like me to ta...