66 matches found
CVE-2025-3567
A vulnerability, which was classified as problematic, was found in veal98 小牛肉 Echo 开源社区系统 4.2. Affected is the function preHandle of the file src/main/java/com/greate/community/controller/interceptor/LoginTicketInterceptor.java of the component Ticket Handler. The manipulation leads to improper...
CVE-2025-3567 veal98 小牛肉 Echo 开源社区系统 Ticket LoginTicketInterceptor.java preHandle improper authorization
A vulnerability, which was classified as problematic, was found in veal98 小牛肉 Echo 开源社区系统 4.2. Affected is the function preHandle of the file src/main/java/com/greate/community/controller/interceptor/LoginTicketInterceptor.java of the component Ticket Handler. The manipulation leads to improper...
CVE-2025-3567
CVE-2025-3567 affects veal98 小牛肉 Echo 开源社区系统 v4.2. The vulnerability resides in the preHandle function of LoginTicketInterceptor.java (Ticket Handler). Manipulation leads to improper authorization and can be exploited remotely; public exploit information exists. Multiple sources corroborate the i...
CVE-2025-0972
A vulnerability classified as problematic has been found in Zenvia Movidesk up to 25.01.22. This affects an unknown part of the component New Ticket Handler. The manipulation of the argument subject leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-0972
A vulnerability classified as problematic has been found in Zenvia Movidesk up to 25.01.22. This affects an unknown part of the component New Ticket Handler. The manipulation of the argument subject leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-0972 Zenvia Movidesk New Ticket cross site scripting
A vulnerability classified as problematic has been found in Zenvia Movidesk up to 25.01.22. This affects an unknown part of the component New Ticket Handler. The manipulation of the argument subject leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-0972 Zenvia Movidesk New Ticket cross site scripting
A vulnerability classified as problematic has been found in Zenvia Movidesk up to 25.01.22. This affects an unknown part of the component New Ticket Handler. The manipulation of the argument subject leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has bee...
Zenvia 代码注入漏洞
Zenvia is a complete customer service software from Zenvia, Inc. A code injection vulnerability exists in Zenvia versions 25.01.22 and earlier, which stems from the parameter subject of the component New Ticket Handler that results in cross-site scripting...
CVE-2024-9298 SourceCodester Online Railway Reservation System Ticket ?page=tickets access control
A vulnerability was found in SourceCodester Online Railway Reservation System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /?page=tickets of the component Ticket Handler. The manipulation of the argument id leads to improper access...
CVE-2024-9298 SourceCodester Online Railway Reservation System Ticket ?page=tickets access control
A vulnerability was found in SourceCodester Online Railway Reservation System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /?page=tickets of the component Ticket Handler. The manipulation of the argument id leads to improper access...
CVE-2024-9298
CVE-2024-9298 affects SourceCodester Online Railway Reservation System 1.0, specifically the Ticket Handler’s /?page=tickets functionality. The vulnerability arises from improper access controls when manipulating the id argument, enabling a remote attacker to access parts of the system. The issue...
Online Railway Reservation System 访问控制错误漏洞
Online Railway Reservation System is an online railroad reservation system by adminastro individual developers. An access control error vulnerability exists in SourceCodester Online Railway Reservation System version 1.0, which stems from an improper access control issue contained in the id...
CVE-2023-3835
A vulnerability classified as problematic has been found in Bug Finder MineStack 1.0. This affects an unknown part of the file /user/ticket/create of the component Ticket Handler. The manipulation of the argument message leads to cross site scripting. It is possible to initiate the attack remotel...
CVE-2023-3835
A vulnerability classified as problematic has been found in Bug Finder MineStack 1.0. This affects an unknown part of the file /user/ticket/create of the component Ticket Handler. The manipulation of the argument message leads to cross site scripting. It is possible to initiate the attack remotel...
CVE-2023-3835 Bug Finder MineStack Ticket create cross site scripting
A vulnerability classified as problematic has been found in Bug Finder MineStack 1.0. This affects an unknown part of the file /user/ticket/create of the component Ticket Handler. The manipulation of the argument message leads to cross site scripting. It is possible to initiate the attack remotel...
Cross site scripting
A vulnerability was found in Bug Finder EX-RATE 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /user/ticket/create of the component Ticket Handler. The manipulation of the argument message leads to cross site scripting. The attack may be...
CVE-2023-3834 Bug Finder EX-RATE Ticket create cross site scripting
A vulnerability was found in Bug Finder EX-RATE 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /user/ticket/create of the component Ticket Handler. The manipulation of the argument message leads to cross site scripting. The attack may be...
CVE-2023-3834 Bug Finder EX-RATE Ticket create cross site scripting
A vulnerability was found in Bug Finder EX-RATE 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /user/ticket/create of the component Ticket Handler. The manipulation of the argument message leads to cross site scripting. The attack may be...
CVE-2023-3832
A vulnerability was found in Bug Finder Wedding Wonders 1.0. It has been classified as problematic. Affected is an unknown function of the file /user/ticket/create of the component Ticket Handler. The manipulation of the argument message leads to cross site scripting. It is possible to launch the...
CVE-2023-3833
A vulnerability was found in Bug Finder Montage 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /user/ticket/create of the component Ticket Handler. The manipulation of the argument message leads to cross site scripting. The attack...