14 matches found
EUVD-2024-54498
Malicious code in bioql PyPI...
CVE-2024-44903
SQL Injection can occur in the SirsiDynix Horizon Information Portal IPAC20 through 3.259382; however, a patch is available from the vendor. This is in ipac.jsp in a SELECT WHERE statement, in a part of the uri= variable in the second part of the full= inner variable...
CVE-2024-44903
SQL Injection can occur in the SirsiDynix Horizon Information Portal IPAC20 through 3.259382; however, a patch is available from the vendor. This is in ipac.jsp in a SELECT WHERE statement, in a part of the uri= variable in the second part of the full= inner variable...
CVE-2024-44903
SQL Injection can occur in the SirsiDynix Horizon Information Portal IPAC20 through 3.259382; however, a patch is available from the vendor. This is in ipac.jsp in a SELECT WHERE statement, in a part of the uri= variable in the second part of the full= inner variable...
CVE-2024-44903
SQL Injection can occur in the SirsiDynix Horizon Information Portal IPAC20 through 3.259382; however, a patch is available from the vendor. This is in ipac.jsp in a SELECT WHERE statement, in a part of the uri= variable in the second part of the full= inner variable...
CVE-2024-44903
CVE-2024-44903 affects SirsiDynix Horizon Information Portal (IPAC20) up to version 3.25_9382. The vulnerability is a SQL injection in ipac.jsp within a SELECT WHERE statement in the uri= portion of the full= inner variable, leading to potential impact as described by the CVSS vector ( HIGH, NETW...
SirsiDynix Horizon SQL注入漏洞
SirsiDynix Horizon is an integrated library system from SirsiDynix. A security vulnerability exists in SirsiDynix Horizon 3.259382 and prior versions, which stems from a SQL injection in ipac.jsp and could lead to an attacker executing arbitrary code...
leeds.sirsidynix.net.uk Cross Site Scripting vulnerability OBB-3909907
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
marion.ipac.sirsidynix.net Cross Site Scripting vulnerability OBB-3878789
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
leeds.sirsidynix.net.uk Cross Site Scripting vulnerability OBB-3088492
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
SirsiDynix e-Library 3.5.x Cross Site Scripting
Exploit Title: SirsiDynix e-Library = 3.5.x - Cross-Site Scripting CVE: CVE-2018-20503 Date: 2019-24-01 Google Dork: inurl:/x/x/0/49 Exploit Author: Azkan Mustafa AkkuA AkkuS Contact: https://pentest.com.tr Vendor Homepage: http://www.sirsidynix.com Version: 3.5.x Category: Webapps Tested on:...
SirsiDynix e-Library 3.5.x - Cross-Site Scripting Vulnerability
Exploit for cgi platform in category web applications Exploit Title: SirsiDynix e-Library = 3.5.x - Cross-Site Scripting CVE: CVE-2018-20503 Google Dork: inurl:/x/x/0/49 Exploit Author: Özkan Mustafa Akkuş AkkuS Contact: https://pentest.com.tr Vendor Homepage: http://www.sirsidynix.com Version:...
SirsiDynix e-Library 3.5.x - Cross-Site Scripting
SirsiDynix e-Library 3.5.x - Cross-Site Scripting Exploit Title: SirsiDynix e-Library = 3.5.x - Cross-Site Scripting CVE: CVE-2018-20503 Date: 2019-24-01 Google Dork: inurl:/x/x/0/49 Exploit Author: Özkan Mustafa Akkuş AkkuS Contact: https://pentest.com.tr Vendor Homepage: http://www.sirsidynix.c...
SirsiDynix e-Library 3.5.x - Cross-Site Scripting
Exploit Title: SirsiDynix e-Library = 3.5.x - Cross-Site Scripting CVE: CVE-2018-20503 Date: 2019-24-01 Google Dork: inurl:/x/x/0/49 Exploit Author: Özkan Mustafa Akkuş AkkuS Contact: https://pentest.com.tr Vendor Homepage: http://www.sirsidynix.com Version: 3.5.x Category: Webapps Tested on:...