36 matches found
EUVD-2022-52648
Malicious code in bioql PyPI...
EUVD-2022-35267
Malicious code in bioql PyPI...
EUVD-2023-40137
Malicious code in bioql PyPI...
EUVD-2023-48406
Malicious code in bioql PyPI...
CVE-2024-51032
A Cross-site Scripting XSS vulnerability in managerecipient.php of Sourcecodester Toll Tax Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "owner" input field...
CVE-2022-30837
Toll-tax-management-system v1.0 is vulnerable to Cross Site Scripting XSS via /ttms/classes/Master.php?f=saverecipient, vehiclename...
CVE-2022-30053
In Toll Tax Management System 1.0, the id parameter appears to be vulnerable to SQL injection attacks...
The vulnerability of SAP Capital Yield Tax Management software lies in incorrect restrictions on the path to the catalog, allowing attackers to gain unauthorized access to protected information.
The vulnerability of the SAP Capital Yield Tax Management software relates to incorrect restrictions on the path name to the catalog. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...
SAP Capital Yield Tax Management Directory Traversal Vulnerability
SAP Capital Yield Tax Management is a tool for capital gains tax calculation, reporting and compliance management from SAP. A directory traversal vulnerability exists in SAP Capital Yield Tax Management, which can be exploited by an attacker to submit a special request to view the contents of...
CVE-2025-30014
SAP Capital Yield Tax Management has directory traversal vulnerability due to insufficient path validation. This could allow an attacker with low privileges to read files from directory which they don�t have access to, hence causing a high impact on confidentiality. Integrity and Availability are...
CVE-2025-30014 Directory Traversal vulnerability in SAP Capital Yield Tax Management
SAP Capital Yield Tax Management has directory traversal vulnerability due to insufficient path validation. This could allow an attacker with low privileges to read files from directory which they don�t have access to, hence causing a high impact on confidentiality. Integrity and Availability are...
CVE-2025-30014 Directory Traversal vulnerability in SAP Capital Yield Tax Management
SAP Capital Yield Tax Management has directory traversal vulnerability due to insufficient path validation. This could allow an attacker with low privileges to read files from directory which they don�t have access to, hence causing a high impact on confidentiality. Integrity and Availability are...
CVE-2025-30014
CVE-2025-30014 affects SAP Capital Yield Tax Management with a directory traversal vulnerability due to insufficient path validation. An attacker with low privileges could read files outside the intended directory, exposing confidentiality (integrity and availability unaffected). CVSS 3.1 base sc...
PT-2025-15372 · Sap · Sap Capital Yield Tax Management
Name of the Vulnerable Software and Affected Versions: SAP Capital Yield Tax Management affected versions not specified Description: The issue is related to a directory traversal vulnerability due to insufficient path validation. This could allow an attacker with low privileges to read files from...
CVE-2024-51032
A Cross-site Scripting XSS vulnerability in managerecipient.php of Sourcecodester Toll Tax Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "owner" input field...
CVE-2024-51032
A Cross-site Scripting XSS vulnerability in managerecipient.php of Sourcecodester Toll Tax Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "owner" input field...
CVE-2024-51032
A Cross-site Scripting XSS vulnerability in managerecipient.php of Sourcecodester Toll Tax Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "owner" input field...
CVE-2024-51032
CVE-2024-51032 affects Sourcecodester Toll Tax Management System 1.0. The vulnerability is a Cross-site Scripting (XSS) in the file manage_recipient.php, exploitable by remote authenticated users via the owner input field. According to the sources, the impact is XSS with potential script injectio...
Sql injection
Sourcecodester Toll Tax Management System v1 is vulnerable to SQL Injection...
CVE-2023-44047
CVE-2023-44047 affects Sourcecodester Toll Tax Management System v1. The root cause is SQL Injection in the application (SQLi). CVSS v3.1: AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H; base score 7.2 (HIGH). Exploitation would be via network access without user interaction, but the details of exploit patt...