EUVD-2023-49459

Malicious code in bioql PyPI...

EUVD-2023-55655

Malicious code in bioql PyPI...

CVE-2023-50924

CVE-2023-50924 affects the Englesystem shift planning system. Prior to v3.4.1, it performed insufficient validation of user-supplied data in the DECT number, mobile number, and work-log comment fields. This allowed an authenticated user to inject JavaScript into other users’ sessions, with the in...

CVE-2023-45659

Engelsystem is a shift planning system for chaos events. If a users' password is compromised and an attacker gained access to a users' account, i.e., logged in and obtained a session, an attackers' session is not terminated if the users' account password is reset. This vulnerability has been fixe...

CVE-2023-45659

Engelsystem is affected by CVE-2023-45659, where if a user’s password is compromised and an attacker gains access to that user’s session, the attacker’s session is not terminated after the user’s password is reset. The issue has a fix committed in dbb089315ff3d, and users are advised to update th...

PT-2023-29633 · Unknown · Engelsystem

Name of the Vulnerable Software and Affected Versions: Engelsystem affected versions not specified Description: Engelsystem is a shift planning system for chaos events. If a user's password is compromised and an attacker gains access to the user's account, the attacker's session is not terminated...