2143 matches found
CVE-2020-10045
A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. An error in the challenge-response procedure could allow an attacker to replay authentication traffic and gain access to protected areas of the web application...
CVE-2020-10041
A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. A stored Cross-Site-Scripting XSS vulnerability is present in different locations of the web application. An attacker might be able to take over a session of a legitimate user...
CVE-1999-0796
FreeBSD T/TCP Extensions for Transactions can be subjected to spoofing attacks...
PT-2026-27773
Name of the Vulnerable Software and Affected Versions BIND versions 9.20.0 through 9.20.20 BIND versions 9.21.0 through 9.21.19 BIND versions 9.20.9-S1 through 9.20.20-S1 Description BIND may terminate unexpectedly when processing a correctly signed query containing a TKEY record. This issue occu...
CVE-2022-50796
SOUND4 IMPACT/FIRST/PULSE/Eco =2.x contains an unauthenticated remote code execution vulnerability in the firmware upload functionality with path traversal flaw. Attackers can exploit the upload.cgi script to write malicious files to the system with www-data permissions, enabling unauthorized...
CVE-2025-15103 DVP-12SE11T - Authentication Bypass via Partial Password Disclosure
DVP-12SE11T - Authentication Bypass via Partial Password Disclosure...
EUVD-2022-55812
In the Linux kernel, the following vulnerability has been resolved: acct: fix potential integer overflow in encodecompt The integer overflow is descripted with following codes: 317 static compt encodecomptu64 value 318 319 int exp, rnd; ...... 341 exp 342 exp += value; 343 return exp; 344 Current...
CVE-2022-50749
In the Linux kernel, the following vulnerability has been resolved: acct: fix potential integer overflow in encodecompt The integer overflow is descripted with following codes: 317 static compt encodecomptu64 value 318 319 int exp, rnd; ...... 341 exp 342 exp += value; 343 return exp; 344 Current...
SMS Phishers Pivot to Points, Taxes, Fake Retailers
China-based phishing groups blamed for non-stop scam SMS messages about a supposed wayward package or unpaid toll fee are promoting a new offering, just in time for the holiday shopping season: Phishing kits for mass-creating fake but convincing e-commerce websites that convert customer payment...
CVE-2025-13296
Cross-Site Request Forgery CSRF vulnerability in Tekrom Technology Inc. T-Soft E-Commerce allows Cross Site Request Forgery.This issue affects T-Soft E-Commerce: through 28112025...
SQL Injection Vulnerability in Changjitong T+ of Changjitong Information Technology Co. Ltd (CNVD-C-2025-448742)
T+ is a dynamic, intelligent and fashionable Internet management software, mainly for small and medium-sized industrial, trade and commerce enterprises with integrated financial and business applications, incorporating elements of socialization, mobility, Internet of Things, e-commerce and Intern...
CVE-2025-13296
Cross-Site Request Forgery CSRF vulnerability in Tekrom Technology Inc. T-Soft E-Commerce allows Cross Site Request Forgery. This issue affects T-Soft E-Commerce: through 28112025...
CVE-2025-13296 CSRF in Tekrom Technology's T-Soft E-Commerce
Cross-Site Request Forgery CSRF vulnerability in Tekrom Technology Inc. T-Soft E-Commerce allows Cross Site Request Forgery. This issue affects T-Soft E-Commerce: through 28112025...
CVE-2025-13296 CSRF in Tekrom Technology's T-Soft E-Commerce
Cross-Site Request Forgery CSRF vulnerability in Tekrom Technology Inc. T-Soft E-Commerce allows Cross Site Request Forgery. This issue affects T-Soft E-Commerce: through 28112025...
CVE-2025-13296
Cross-Site Request Forgery CSRF vulnerability in Tekrom Technology Inc. T-Soft E-Commerce allows Cross Site Request Forgery. This issue affects T-Soft E-Commerce: through 28112025...
CVE-2025-13296
CVE-2025-13296 is a Cross-Site Request Forgery (CSRF) vulnerability in Tekrom Technology Inc. T-Soft E-Commerce. Affected versions are T-Soft E-Commerce up to 28112025 (inclusive). The CVSS 3.1 vector from the provided metrics is AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N with a base score of 5.4 (Mediu...
EUVD-2025-199984
Cross-Site Request Forgery CSRF vulnerability in Tekrom Technology Inc. T-Soft E-Commerce allows Cross Site Request Forgery.This issue affects T-Soft E-Commerce: through 28112025...
PT-2025-48440
Name of the Vulnerable Software and Affected Versions Tekrom Technology Inc. T-Soft E-Commerce versions through 28112025 Description A Cross-Site Request Forgery CSRF issue exists in Tekrom Technology Inc. T-Soft E-Commerce. This allows an attacker to perform actions on behalf of an authenticated...
Tekrom T-Soft E-Commerce 跨站请求伪造漏洞
Tekrom T-Soft E-Commerce is an e-commerce software from Tekrom. A cross-site request forgery vulnerability exists in Tekrom T-Soft E-Commerce 28112025 and earlier versions, which can be exploited to trick a logged-in user into performing an unintended action...
EUVD-2025-199707
Malicious code in ahmedsalemt npm...