25 matches found
Quatuor Evaluation of Performance SQL Injection Vulnerability
Quatuor Evaluación de Desempeño is a performance evaluation system developed by the Spanish company Quatuor. Quatuor Evaluación de Desempeño has a SQL injection vulnerability. This vulnerability stems from external SQL injections in the parameters Idusuario and Idevaluacion within the...
GTT Sistema de Información Tributario 安全漏洞
GTT Sistema de Información Tributario is an e-government platform from GTT USA. A security vulnerability exists in GTT Sistema de Información Tributario that stems from an authentication method bypass that could allow an attacker to impersonate any domain user...
EUVD-2024-20166
Malicious code in bioql PyPI...
CVE-2025-9724
A vulnerability was determined in Portabilis i-Educar up to 2.10. This impacts an unknown function of the file /intranet/educarnivelensinocad.php. Executing manipulation of the argument nmnivel/descricao can lead to cross site scripting. The attack can be launched remotely. The exploit has been...
VulkAnalyzer
VulkAnalyzer apenas um teste, inciante Autor Hygark Func...
Malicious Package
Overview secmeasure is a malicious package. This package contains malicious code, and its content was removed from the official package manager. The sisaws package leverages "typosquatting" for the legitimate sisa package, targeting Sistema Integrado de Información Sanitaria Argentino SISA API...
CVE-2025-48938 vulnerabilities
Vulnerabilities for packages: wolfictl...
Ataque de puerta trasera
¿Qué es una puerta trasera? Un "Acceso Secreto" es una técnica que se utiliza para saltarse la autenticación usual en un sistema, producto o dispositivo. Muchas veces, los creadores de software hacen uso de estos accesos para entrar a programas o sistemas y llevar a cabo ajustes o actualizaciones...
PT-2024-19509 · Setor Informatica · Setor Informatica Sistema Inteligente Para Laboratorios
Name of the Vulnerable Software and Affected Versions: Setor Informatica Sistema Inteligente para Laboratorios S.I.L. version 388 Description: The issue is related to a remote code execution RCE vulnerability. It can be triggered via a crafted POST request using the hmsg parameter. Recommendation...
CVE-2024-22633
Setor Informatica Sistema Inteligente para Laboratorios S.I.L. 388 was discovered to contain a remote code execution RCE vulnerability via the hprinter parameter. This vulnerability is triggered via a crafted POST request...
PT-2024-19510 · Setor Informatica · Setor Informatica Sistema Inteligente Para Laboratorios
Name of the Vulnerable Software and Affected Versions: Setor Informatica Sistema Inteligente para Laboratorios S.I.L. version 388 Description: The issue is related to a remote code execution RCE vulnerability. It can be triggered via a crafted POST request to the hprinter parameter...
sistema-th.com Improper Access Control vulnerability OBB-3812110
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
PT-2023-29310 · Unknown · Ardereg Sistema Scada Central
Name of the Vulnerable Software and Affected Versions: ARDEREG Sistema SCADA Central versions 2.203 and prior Description: The login page of the affected software is vulnerable to an unauthenticated blind SQL injection attack. This allows an attacker to manipulate the application's SQL query logi...
CVE-2022-2591
A vulnerability classified as critical has been found in TEM FLEX-1085 1.6.0. Affected is an unknown function of the file /sistema/flash/reboot. The manipulation leads to denial of service. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used...
Carel pCOWeb HVAC BACnet Gateway 2.1.0 - Directory Traversal Vulnerability
Exploit Title: Carel pCOWeb HVAC BACnet Gateway 2.1.0 - Directory Traversal Exploit Author: LiquidWorm Vendor: CAREL INDUSTRIES S.p.A. Product web page: https://www.carel.com Affected version: Firmware: A2.1.0 - B2.1.0 Application Software: 2.15.4A Software version: v16 13020200 Summary: pCO...
sistema-automotriz.pe XSS vulnerability
Open Bug Bounty ID: OBB-646063 Description| Value ---|--- Affected Website:| sistema-automotriz.pe Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Other Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
sistema-automotriz.pe XSS vulnerability
Open Bug Bounty ID: OBB-611829 Description| Value ---|--- Affected Website:| sistema-automotriz.pe Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
AIX 710000 : U837187
The remote host is missing AIX PTF U837187 which is related to the security of the package bos.adt.libm.7.1.0.15 You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...
AIX 610004 : U836689
The remote host is missing AIX PTF U836689 which is related to the security of the package devices.tmiscsw.rte You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...
AIX 610003 : U835946
The remote host is missing AIX PTF U835946 which is related to the security of the package perfagent.tools You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...