Lucene search
K

130 matches found

EUVD
EUVD
added 2025/11/28 7:35 a.m.3 views

EUVD-2025-199865

WebITR developed by Uniong has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents...

7.1CVSS7.5AI score0.00283EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/28 7:35 a.m.2 views

CVE-2025-13769 Uniong|WebITR - SQL Injection

WebITR developed by Uniong has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents...

7.1CVSS7.6AI score0.00283EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/28 12:0 a.m.3 views

Uniong WebITR SQL注入漏洞

Uniong WebITR is an online time and attendance system from China Kaifa Uniong. Uniong WebITR suffers from a SQL injection vulnerability that originates from SQL injection, which allows remote attackers to inject arbitrary SQL commands to read database contents...

7.1CVSS8.1AI score0.00283EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/11/28 12:0 a.m.5 views

PT-2025-48321

Name of the Vulnerable Software and Affected Versions WebITR versions affected versions not specified Description WebITR, developed by Uniong, contains a SQL Injection issue. Authenticated remote attackers can inject arbitrary SQL commands, potentially allowing them to read database contents. The...

7.1CVSS7.9AI score0.00283EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/11/28 12:0 a.m.7 views

PT-2025-48320

Name of the Vulnerable Software and Affected Versions WebITR versions affected versions not specified Description WebITR developed by Uniong has a SQL Injection issue. Authenticated remote attackers can inject arbitrary SQL commands, potentially allowing them to read database contents. The...

7.1CVSS7.5AI score0.00283EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/11/28 12:0 a.m.4 views

Uniong WebITR SQL注入漏洞

Uniong WebITR is an online time and attendance system from China Kaifa Uniong. Uniong WebITR suffers from a SQL injection vulnerability that originates from SQL injection, which allows remote attackers to inject arbitrary SQL commands to read database contents...

7.1CVSS8.1AI score0.00283EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/13 9:8 a.m.3 views

CVE-2025-13046

Bacteriology Laboratory Reporting System developed by ViewLead Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents...

8.7CVSS8.2AI score0.00064EPSS
Exploits0References1
CVE
CVE
added 2025/11/12 7:59 a.m.9 views

CVE-2025-13047

CVE-2025-13047 affects the ViewLead Technology Bacteriology Laboratory Reporting System. The vulnerability is a SQL Injection that allows unauthenticated remote attackers to inject arbitrary SQL and read database contents. Root cause and exact vulnerable component are described as an injection fl...

7.9AI score0.00064EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/11/03 6:51 a.m.1 views

CVE-2025-12503 Digiwin|EasyFlow .NET and EasyFlow AiNet

EasyFlow .NET and EasyFlow AiNet developed by Digiwin has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents...

7.1CVSS7.7AI score0.00317EPSS
Exploits0References2
OSV
OSV
added 2025/10/13 10:15 p.m.2 views

CVE-2025-62385

SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database...

6.5CVSS6AI score0.00751EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/13 9:13 p.m.2 views

CVE-2025-62384

SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database...

6.5CVSS6AI score0.00757EPSS
Exploits0References1
CVE
CVE
added 2025/10/13 9:11 p.m.13 views

CVE-2025-62388

CVE-2025-62388 is an SQL injection in Ivanti Endpoint Manager that enables a remote authenticated attacker to read arbitrary data from the database. The Ivanti security advisory bundle lists this CVE among multiple SQL injection issues and indicates that fixes are being rolled into updates; speci...

6.5CVSS6AI score0.00752EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/10/13 12:0 a.m.6 views

PT-2025-41829

Name of the Vulnerable Software and Affected Versions Ivanti Endpoint Manager affected versions not specified Description A SQL injection issue exists in Ivanti Endpoint Manager. A remotely authenticated attacker can potentially read arbitrary data from the database. The issue allows for...

6.5CVSS7.1AI score0.00751EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.19 views

EUVD-2025-24207

Malicious code in bioql PyPI...

4.9CVSS6.5AI score0.00291EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-26168

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00395EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-24548

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00356EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-28806

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00488EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/31 3:42 a.m.4 views

CVE-2025-8858

Clinic Image System developed by Changing has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents...

8.7CVSS8.3AI score0.00395EPSS
Exploits0References1
NVD
NVD
added 2025/08/29 4:15 a.m.1 views

CVE-2025-8858

Clinic Image System developed by Changing has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents...

8.7CVSS0.00395EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/29 3:36 a.m.6 views

CVE-2025-8858 Changing|Clinic Image System - SQL Injection

Clinic Image System developed by Changing has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents...

8.7CVSS0.00395EPSS
Exploits0References2
Rows per page
Query Builder