Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

30 matches found

RedhatCVE
RedhatCVEadded yesterday3 views

CVE-2026-25607

Use of a weak password encoding algorithm in STER software allows the value of the password to be guessed after analyzing how passwords with known values are encoded. This issue was fixed in version 9.5...

5.7CVSS5.4AI score0.00015EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded yesterday4 views

CVE-2026-25606

A SQL injection vulnerability has been identified in STER. Improper neutralization of input provided by user into multiple Search Filters allows for SQL Injection attacks. It allows an authenticated attacker to view sensitive data such as data belonging to other users, or any other data that the...

8.7CVSS5.7AI score0.00034EPSS
Exploits0References1
NVD
NVDadded 2026/05/22 10:16 a.m.6 views

CVE-2026-25606

A SQL injection vulnerability has been identified in STER. Improper neutralization of input provided by user into multiple Search Filters allows for SQL Injection attacks. It allows an authenticated attacker to view sensitive data such as data belonging to other users, or any other data that the...

8.7CVSS0.00034EPSS
Exploits0References2
NVD
NVDadded 2026/05/22 10:16 a.m.10 views

CVE-2026-25607

Use of a weak password encoding algorithm in STER software allows the value of the password to be guessed after analyzing how passwords with known values are encoded. This issue was fixed in version 9.5...

5.7CVSS0.00015EPSS
Exploits0References2
CVE
CVEadded 2026/05/22 9:14 a.m.6 views

CVE-2026-25608

CVE-2026-25608 (STER) : The vulnerability involves unencrypted TCP traffic used by STER to transmit data, enabling a Man-In-The-Middle attacker to obtain sensitive information such as passwords, personal data, or authentication tokens. The underlying risk is data confidentiality loss during netwo...

2.3CVSS5.8AI score0.00031EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/05/22 9:14 a.m.25 views

CVE-2026-25607 Weak password encoding in STER

Use of a weak password encoding algorithm in STER software allows the value of the password to be guessed after analyzing how passwords with known values are encoded. This issue was fixed in version 9.5...

5.7CVSS0.00015EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/22 9:14 a.m.5 views

CVE-2026-25607 Weak password encoding in STER

Use of a weak password encoding algorithm in STER software allows the value of the password to be guessed after analyzing how passwords with known values are encoded. This issue was fixed in version 9.5...

5.7CVSS5.8AI score0.00034EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/22 9:14 a.m.5 views

EUVD-2026-31423

Use of a weak password encoding algorithm in STER software allows the value of the password to be guessed after analyzing how passwords with known values are encoded. This issue was fixed in version 9.5...

8.7CVSS5.8AI score0.00034EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/05/22 9:14 a.m.2 views

CVE-2026-25607

Use of a weak password encoding algorithm in STER software allows the value of the password to be guessed after analyzing how passwords with known values are encoded. This issue was fixed in version 9.5...

8.7CVSS5.8AI score0.00034EPSS
Exploits0References3
CVE
CVEadded 2026/05/22 9:14 a.m.11 views

CVE-2026-25607

CVE-2026-25607 affects STER software. It arises from use of a weak password encoding algorithm, enabling password values to be guessed after analyzing how known passwords are encoded. Impact is limited to confidentiality of credentials, with no broader impact specified beyond password disclosure....

5.7CVSS5.8AI score0.00015EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/05/22 9:14 a.m.3 views

CVE-2026-25606

A SQL injection vulnerability has been identified in STER. Improper neutralization of input provided by user into multiple Search Filters allows for SQL Injection attacks. It allows an authenticated attacker to view sensitive data such as data belonging to other users, or any other data that the...

8.7CVSS5.8AI score0.00034EPSS
Exploits0References3
CVE
CVEadded 2026/05/22 9:14 a.m.13 views

CVE-2026-25606

CVE-2026-25606 concerns STER. The vulnerability is a SQL injection affecting multiple Search Filters where improper input neutralization allows an authenticated attacker to view data belonging to other users or any data the application can access. Affected component appears to be the STER web/app...

8.7CVSS5.8AI score0.00034EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/22 9:14 a.m.4 views

CVE-2026-25606 SQL Injection in STER

A SQL injection vulnerability has been identified in STER. Improper neutralization of input provided by user into multiple Search Filters allows for SQL Injection attacks. It allows an authenticated attacker to view sensitive data such as data belonging to other users, or any other data that the...

8.7CVSS5.8AI score0.00034EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/05/22 9:14 a.m.22 views

CVE-2026-25606 SQL Injection in STER

A SQL injection vulnerability has been identified in STER. Improper neutralization of input provided by user into multiple Search Filters allows for SQL Injection attacks. It allows an authenticated attacker to view sensitive data such as data belonging to other users, or any other data that the...

8.7CVSS0.00034EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/05/22 12:0 a.m.7 views

PT-2026-42743

Use of a weak password encoding algorithm in STER software allows the value of the password to be guessed after analyzing how passwords with known values are encoded. This issue was fixed in version 9.5...

5.7CVSS5.8AI score0.00015EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/05/22 12:0 a.m.7 views

PT-2026-42742

A SQL injection vulnerability has been identified in STER. Improper neutralization of input provided by user into multiple Search Filters allows for SQL Injection attacks. It allows an authenticated attacker to view sensitive data such as data belonging to other users, or any other data that the...

8.7CVSS5.8AI score0.00034EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/05/22 12:0 a.m.6 views

CIOP-PIB STER 安全漏洞

CIOP-PIB STER is a occupational safety and human ergonomics risk assessment software system developed by the Polish company CIOP-PIB. Versions of CIOP-PIB STER prior to version 9.5 contained security vulnerabilities. These vulnerabilities stemmed from the use of unencrypted TCP traffic for data...

8.7CVSS5.8AI score0.00034EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2023-12941

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00919EPSS
Exploits0References3
OSV
OSVadded 2023/08/03 7:15 p.m.0 views

CVE-2023-0956

External input could be used on TEL-STER TelWin SCADA WebInterface to construct paths to files and directories without properly neutralizing special elements within the pathname, which could allow an unauthenticated attacker to read files on the system...

7.5CVSS5.8AI score0.00919EPSS
Exploits0References3
NVD
NVDadded 2023/08/03 7:15 p.m.15 views

CVE-2023-0956

External input could be used on TEL-STER TelWin SCADA WebInterface to construct paths to files and directories without properly neutralizing special elements within the pathname, which could allow an unauthenticated attacker to read files on the system...

7.5CVSS7.5AI score0.00919EPSS
Exploits0References3
Rows per page
Query Builder