Lucene search
K

12 matches found

OSV
OSV
added 2024/12/12 2:4 a.m.1 views

CVE-2024-49107

WmsRepair Service Elevation of Privilege Vulnerability...

7.3CVSS5.8AI score0.0185EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/04/29 12:0 a.m.8 views

AC Repair and Services System SQL注入漏洞

AC Repair and Services System is an air conditioning repair and services system by Carlo Montero Personal Developer. A SQL injection vulnerability exists in AC Repair and Services System version 1.0, which stems from a misuse of the parameter id resulting in sql injection...

6.5CVSS6.7AI score0.0063EPSS
Exploits1References4
Openbugbounty
Openbugbounty
added 2022/08/07 12:53 p.m.13 views

brisbaneappliancerepairservice.com.au Cross Site Scripting vulnerability OBB-2828101

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
CNVD
CNVD
added 2022/01/07 12:0 a.m.37 views

Sourcecodester Vehicle Service Management System Cross-Site Scripting Vulnerability (CNVD-2022-02640)

Sourcecodester Vehicle Service Management System is an open source PHP project. A simple Web application for automotive repair/service stores or businesses. Sourcecodester Vehicle Service Management System version 1.0 has a cross-site scripting vulnerability that stems from the vulnerability stem...

4.8CVSS1.7AI score0.02736EPSS
Exploits1References1
wpexploit
wpexploit
added 2021/05/17 12:0 a.m.399 views

Car Repair Services < 4.0 - Unauthenticated Reflected XSS & XFS

The theme did not properly sanitise its serviceestimatekey search parameter before outputting it back in the page, leading to a reflected Cross-Site Scripting issue https://smartdata.tonytemplates.com/car-repair-service-v4/car1/estimateresult/result?s=&serviceestimatekey=...

6.1CVSS0.9AI score0.03884EPSS
Exploits2References2
Openbugbounty
Openbugbounty
added 2020/09/04 7:21 a.m.7 views

phoenixcomputerrepairservice.net Cross Site Scripting vulnerability OBB-1300583

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
ThreatPost
ThreatPost
added 2011/03/14 5:29 p.m.9 views

Scammers Pushing Fake AV Via Skype

Rogue anti virus software companies have decided to “reach out and touch someone,” according to a new report from Krebsonsecurity.com. Groups responsible for pushing the bogus anti malware programs are using Internet-based phone calls over the Skype network to trick unsuspecting users into...

0.9AI score
Exploits0References5
NVD
NVD
added 2010/05/12 11:46 a.m.17 views

CVE-2010-1906

tgsrv.exe in the Repair Service in Consona Dynamic Agent, Repair Manager, Subscriber Activation, and Subscriber Agent relies on a predictable timestamp field to validate input to the \.\pipe\RepairServicepipecompany named pipe, which allows remote authenticated users to execute arbitrary code by...

7.2CVSS7.3AI score0.04025EPSS
Exploits1References6
Prion
Prion
added 2010/05/12 11:46 a.m.17 views

Code injection

tgsrv.exe in the Repair Service in Consona Dynamic Agent, Repair Manager, Subscriber Activation, and Subscriber Agent relies on a predictable timestamp field to validate input to the \.\pipe\RepairServicepipecompany named pipe, which allows remote authenticated users to execute arbitrary code by...

7.2CVSS7.9AI score0.04025EPSS
Exploits1References6
Cvelist
Cvelist
added 2010/05/11 11:0 p.m.24 views

CVE-2010-1906

tgsrv.exe in the Repair Service in Consona Dynamic Agent, Repair Manager, Subscriber Activation, and Subscriber Agent relies on a predictable timestamp field to validate input to the \.\pipe\RepairServicepipecompany named pipe, which allows remote authenticated users to execute arbitrary code by...

7.3AI score0.04025EPSS
Exploits1References6
CVE
CVE
added 2010/05/11 11:0 p.m.44 views

CVE-2010-1906

The CVE-2010-1906 entry concerns tgsrv.exe in Consona Dynamic Agent components (Repair Service, Repair Manager, Subscriber Activation, Subscriber Agent). The root cause is reliance on a predictable timestamp field to validate input to the named pipe \.\pipe\__RepairService_pipe__company, enabling...

7.2CVSS7.5AI score0.04025EPSS
Exploits1References6Affected Software4
CERT
CERT
added 2010/05/06 12:0 a.m.27 views

Consona (formerly SupportSoft) Intelligent Assistance Suite (IAS) cross-site scripting, ActiveX, and Repair Service vulnerabilities

Overview Consona formerly SupportSoft Intelligent Assistance Suite IAS contains a set of vulnerabilities that collectively could allow an attacker to execute arbitrary code on a remote system. Description In 2009, Consona acquired SupportSoft's enterprise software assets, including web-based...

6.8AI score
Exploits0References8
Rows per page
Query Builder