Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18 matches found

RedhatCVE
RedhatCVEadded 2025/12/25 3:9 p.m.2 views

CVE-2025-2154

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Echo Call Center Services Trade and Industry Inc. Specto CM allows Stored XSS.This issue affects Specto CM: before 17032025...

5.4CVSS6.1AI score0.00024EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/12/25 3:9 p.m.5 views

CVE-2025-2155

Unrestricted Upload of File with Dangerous Type vulnerability in Echo Call Center Services Trade and Industry Inc. Specto CM allows Remote Code Inclusion.This issue affects Specto CM: before 17032025...

8.8CVSS7.3AI score0.00069EPSS
Exploits0References1
NVD
NVDadded 2025/12/24 3:16 p.m.3 views

CVE-2025-2155

Unrestricted Upload of File with Dangerous Type vulnerability in Echo Call Center Services Trade and Industry Inc. Specto CM allows Remote Code Inclusion.This issue affects Specto CM: before 17032025...

8.8CVSS0.00069EPSS
Exploits0References1
NVD
NVDadded 2025/12/24 3:16 p.m.1 views

CVE-2025-2154

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Echo Call Center Services Trade and Industry Inc. Specto CM allows Stored XSS.This issue affects Specto CM: before 17032025...

5.4CVSS0.00024EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/12/24 2:31 p.m.3 views

CVE-2025-2155 Arbitrary File Upload in EchoCCS's Specto CM

Unrestricted Upload of File with Dangerous Type vulnerability in Echo Call Center Services Trade and Industry Inc. Specto CM allows Remote Code Inclusion.This issue affects Specto CM: before 17032025...

8.8CVSS6.9AI score0.00069EPSS
Exploits0References1
EUVD
EUVDadded 2025/12/24 2:31 p.m.1 views

EUVD-2025-205285

Unrestricted Upload of File with Dangerous Type vulnerability in Echo Call Center Services Trade and Industry Inc. Specto CM allows Remote Code Inclusion.This issue affects Specto CM: before 17032025...

8.8CVSS6.8AI score0.00069EPSS
Exploits0References2
CVE
CVEadded 2025/12/24 2:31 p.m.10 views

CVE-2025-2155

CVE-2025-2155 affects Specto CM (Echo Call Center Services Trade and Industry Inc.). The vulnerability is an Unrestricted Upload of File with Dangerous Type, enabling Remote Code Inclusion. Affected versions are before 17032025. Root cause: improper file‑type validation allowing executable conten...

8.8CVSS6.9AI score0.00069EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/12/24 2:31 p.m.27 views

CVE-2025-2155 Arbitrary File Upload in EchoCCS's Specto CM

Unrestricted Upload of File with Dangerous Type vulnerability in Echo Call Center Services Trade and Industry Inc. Specto CM allows Remote Code Inclusion.This issue affects Specto CM: before 17032025...

8.8CVSS0.00069EPSS
Exploits0References1
CVE
CVEadded 2025/12/24 2:26 p.m.5 views

CVE-2025-2154

CVE-2025-2154 is a Stored XSS vulnerability affecting Specto CM (Echo Specto Call Center Management) prior to version 17032025, caused by improper input neutralization during web page generation. The issue is documented across multiple sources (NVD, Red Hat, CVE listing) as a stored XSS in Specto...

5.4CVSS5.7AI score0.00024EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/12/24 2:26 p.m.1 views

CVE-2025-2154 Stored XSS in EchoCCS's Specto CM

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Echo Call Center Services Trade and Industry Inc. Specto CM allows Stored XSS.This issue affects Specto CM: before 17032025...

5.4CVSS5.7AI score0.00024EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/12/24 2:26 p.m.20 views

CVE-2025-2154 Stored XSS in EchoCCS's Specto CM

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Echo Call Center Services Trade and Industry Inc. Specto CM allows Stored XSS.This issue affects Specto CM: before 17032025...

5.4CVSS0.00024EPSS
Exploits0References1
EUVD
EUVDadded 2025/12/24 2:26 p.m.2 views

EUVD-2025-205286

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Echo Call Center Services Trade and Industry Inc. Specto CM allows Stored XSS.This issue affects Specto CM: before 17032025...

5.4CVSS5.6AI score0.00024EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/12/24 12:0 a.m.2 views

PT-2025-53295

Name of the Vulnerable Software and Affected Versions Specto CM versions prior to 17032025 Description Specto CM is susceptible to a flaw involving unrestricted file uploads, potentially leading to Remote Code Inclusion. The issue stems from the ability to upload files without proper restrictions...

8.8CVSS7.8AI score0.00069EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2025/12/24 12:0 a.m.2 views

PT-2025-53294

Name of the Vulnerable Software and Affected Versions Specto CM versions prior to 17032025 Description Specto CM contains a flaw related to improper input handling during web page generation, which allows for Stored Cross-site Scripting XSS. This means that malicious scripts can be injected into...

5.4CVSS6AI score0.00024EPSS
Exploits0References4
CNNVD
CNNVDadded 2025/12/24 12:0 a.m.2 views

Echo Specto CM 代码问题漏洞

Echo Specto CM is a call center management system from Echo Turkey. A code issue vulnerability exists in versions prior to Echo Specto CM 17032025, which stems from an unrestricted upload of hazardous types of files, which could lead to remote code inclusion...

8.8CVSS7.4AI score0.00069EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/12/24 12:0 a.m.2 views

Echo Specto CM 跨站脚本漏洞

Echo Specto CM is a call center management system from Echo Turkey. A cross-site scripting vulnerability exists in versions prior to Echo Specto CM 17032025, which stems from improper input neutralization and could lead to a stored cross-site scripting attack...

5.4CVSS5.9AI score0.00024EPSS
Exploits0References1
securityvulns
securityvulnsadded 2015/10/12 12:0 a.m.45 views

CVE-2015-6237 - Tripwire IP360 VnE Remote Administrative API Authentication Bypass/Privilege Acquisition Vulnerability

Document Title ================ Tripwire IP360 VnE Remote Administrative API Authentication Bypass/Privilege Acquisition Vulnerability Affected Products =================== Vendor: Tripwire Software/Appliance: IP360 VnE Vulnerability Manager Affected verified versions: v7.2.2 - v7.2.5 CVE =====...

7.5CVSS1.3AI score0.00582EPSS
Exploits1
Packet Storm
Packet Stormadded 2012/03/18 12:0 a.m.32 views

Specto Local File Inclusion

Exploit Title: Specto Local File Includes Vulnerabilities Google Dork: "hébergement par Specto Technologies Inc" Date: 2012/04/18 Author: H4ckCity Secuirty TeaM Discovered by : Nitrojen90 Site : http://www.h4ckcity.org/forum/ Software Link: http://spectotechnologies.com/ Version : Last Version...

7.4AI score
Exploits0
Rows per page
Query Builder