Lucene search
+L

2143 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:52 a.m.7 views

CVE-2020-10045

A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. An error in the challenge-response procedure could allow an attacker to replay authentication traffic and gain access to protected areas of the web application...

8.8CVSS7AI score0.01066EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:51 a.m.6 views

CVE-2020-10041

A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. A stored Cross-Site-Scripting XSS vulnerability is present in different locations of the web application. An attacker might be able to take over a session of a legitimate user...

6.1CVSS5.9AI score0.00767EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:39 a.m.10 views

CVE-1999-0796

FreeBSD T/TCP Extensions for Transactions can be subjected to spoofing attacks...

7.5CVSS6.9AI score0.01144EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.8 views

PT-2026-27773

Name of the Vulnerable Software and Affected Versions BIND versions 9.20.0 through 9.20.20 BIND versions 9.21.0 through 9.21.19 BIND versions 9.20.9-S1 through 9.20.20-S1 Description BIND may terminate unexpectedly when processing a correctly signed query containing a TKEY record. This issue occu...

6.5CVSS5.9AI score0.00576EPSS
Exploits0References35
OSV
OSV
added 2025/12/30 11:15 p.m.8 views

CVE-2022-50796

SOUND4 IMPACT/FIRST/PULSE/Eco =2.x contains an unauthenticated remote code execution vulnerability in the firmware upload functionality with path traversal flaw. Attackers can exploit the upload.cgi script to write malicious files to the system with www-data permissions, enabling unauthorized...

9.8CVSS6.4AI score0.01442EPSS
Exploits2References5
Vulnrichment
Vulnrichment
added 2025/12/30 8:55 a.m.3 views

CVE-2025-15103 DVP-12SE11T - Authentication Bypass via Partial Password Disclosure

DVP-12SE11T - Authentication Bypass via Partial Password Disclosure...

8.1CVSS6.6AI score0.00306EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/24 3:30 p.m.3 views

EUVD-2022-55812

In the Linux kernel, the following vulnerability has been resolved: acct: fix potential integer overflow in encodecompt The integer overflow is descripted with following codes: 317 static compt encodecomptu64 value 318 319 int exp, rnd; ...... 341 exp 342 exp += value; 343 return exp; 344 Current...

6.3AI score0.00239EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/12/24 1:16 p.m.5 views

CVE-2022-50749

In the Linux kernel, the following vulnerability has been resolved: acct: fix potential integer overflow in encodecompt The integer overflow is descripted with following codes: 317 static compt encodecomptu64 value 318 319 int exp, rnd; ...... 341 exp 342 exp += value; 343 return exp; 344 Current...

5.9AI score0.00239EPSS
Exploits0References10
Krebs on Security
Krebs on Security
added 2025/12/04 11:2 p.m.10 views

SMS Phishers Pivot to Points, Taxes, Fake Retailers

China-based phishing groups blamed for non-stop scam SMS messages about a supposed wayward package or unpaid toll fee are promoting a new offering, just in time for the holiday shopping season: Phishing kits for mass-creating fake but convincing e-commerce websites that convert customer payment...

6.7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/04 12:30 p.m.10 views

CVE-2025-13296

Cross-Site Request Forgery CSRF vulnerability in Tekrom Technology Inc. T-Soft E-Commerce allows Cross Site Request Forgery.This issue affects T-Soft E-Commerce: through 28112025...

5.4CVSS6.9AI score0.00099EPSS
Exploits0References1
CNVD
CNVD
added 2025/12/02 12:0 a.m.6 views

SQL Injection Vulnerability in Changjitong T+ of Changjitong Information Technology Co. Ltd (CNVD-C-2025-448742)

T+ is a dynamic, intelligent and fashionable Internet management software, mainly for small and medium-sized industrial, trade and commerce enterprises with integrated financial and business applications, incorporating elements of socialization, mobility, Internet of Things, e-commerce and Intern...

5.9AI score
Exploits0
NVD
NVD
added 2025/12/01 12:15 p.m.5 views

CVE-2025-13296

Cross-Site Request Forgery CSRF vulnerability in Tekrom Technology Inc. T-Soft E-Commerce allows Cross Site Request Forgery. This issue affects T-Soft E-Commerce: through 28112025...

5.4CVSS0.00099EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/01 11:51 a.m.6 views

CVE-2025-13296 CSRF in Tekrom Technology's T-Soft E-Commerce

Cross-Site Request Forgery CSRF vulnerability in Tekrom Technology Inc. T-Soft E-Commerce allows Cross Site Request Forgery. This issue affects T-Soft E-Commerce: through 28112025...

5.4CVSS5.8AI score0.00099EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/01 11:51 a.m.18 views

CVE-2025-13296 CSRF in Tekrom Technology's T-Soft E-Commerce

Cross-Site Request Forgery CSRF vulnerability in Tekrom Technology Inc. T-Soft E-Commerce allows Cross Site Request Forgery. This issue affects T-Soft E-Commerce: through 28112025...

5.4CVSS0.00099EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/12/01 11:51 a.m.6 views

CVE-2025-13296

Cross-Site Request Forgery CSRF vulnerability in Tekrom Technology Inc. T-Soft E-Commerce allows Cross Site Request Forgery. This issue affects T-Soft E-Commerce: through 28112025...

5.4CVSS5.8AI score0.00099EPSS
Exploits0References3
CVE
CVE
added 2025/12/01 11:51 a.m.17 views

CVE-2025-13296

CVE-2025-13296 is a Cross-Site Request Forgery (CSRF) vulnerability in Tekrom Technology Inc. T-Soft E-Commerce. Affected versions are T-Soft E-Commerce up to 28112025 (inclusive). The CVSS 3.1 vector from the provided metrics is AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N with a base score of 5.4 (Mediu...

5.4CVSS5.8AI score0.00099EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/01 11:51 a.m.6 views

EUVD-2025-199984

Cross-Site Request Forgery CSRF vulnerability in Tekrom Technology Inc. T-Soft E-Commerce allows Cross Site Request Forgery.This issue affects T-Soft E-Commerce: through 28112025...

5.4CVSS6.4AI score0.00099EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/01 12:0 a.m.6 views

PT-2025-48440

Name of the Vulnerable Software and Affected Versions Tekrom Technology Inc. T-Soft E-Commerce versions through 28112025 Description A Cross-Site Request Forgery CSRF issue exists in Tekrom Technology Inc. T-Soft E-Commerce. This allows an attacker to perform actions on behalf of an authenticated...

5.4CVSS5.6AI score0.00099EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/12/01 12:0 a.m.6 views

Tekrom T-Soft E-Commerce 跨站请求伪造漏洞

Tekrom T-Soft E-Commerce is an e-commerce software from Tekrom. A cross-site request forgery vulnerability exists in Tekrom T-Soft E-Commerce 28112025 and earlier versions, which can be exploited to trick a logged-in user into performing an unintended action...

5.4CVSS6.6AI score0.00099EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/26 4:37 a.m.3 views

EUVD-2025-199707

Malicious code in ahmedsalemt npm...

6.6AI score
Exploits0References1
Rows per page
Query Builder