12 matches found
EUVD-2024-44150
Malicious code in bioql PyPI...
EUVD-2024-44151
Malicious code in bioql PyPI...
OTRS Security Vulnerabilities
OTRS is a software application from the German company OTRS. A service management software. A security vulnerability exists in OTRS that stems from the presence of an incorrect privilege assignment vulnerability that could lead to elevated privileges...
CVE-2024-4538
IDOR vulnerability in Janto Ticketing Software affecting version 4.3r10. This vulnerability could allow a remote user to obtain a user's event ticket by creating a specific request with the ticket reference ID, leading to the exposure of sensitive user data...
CVE-2024-4537
IDOR vulnerability in Janto Ticketing Software affecting version 4.3r10. This vulnerability could allow a remote user to obtain the download URL of another user to obtain the purchased ticket...
CVE-2024-4538 IDOR vulnerability in Janto Ticketing Software
IDOR vulnerability in Janto Ticketing Software affecting version 4.3r10. This vulnerability could allow a remote user to obtain a user's event ticket by creating a specific request with the ticket reference ID, leading to the exposure of sensitive user data...
CVE-2024-4538
CVE-2024-4538 is an IDOR vulnerability in Janto Ticketing Software, affecting version 4.3r10. The issue allows a remote attacker to obtain a user’s event ticket by crafting a request using the ticket reference ID, resulting in exposure of sensitive user data. The provided metrics indicate a CVSS ...
CVE-2024-4537 IDOR vulnerability in Janto Ticketing Software
IDOR vulnerability in Janto Ticketing Software affecting version 4.3r10. This vulnerability could allow a remote user to obtain the download URL of another user to obtain the purchased ticket...
CVE-2024-4537
CVE-2024-4537 describes an IDOR vulnerability in Janto Ticketing Software version 4.3r10. The issue could allow a remote attacker to obtain another user’s download URL to access purchased tickets, indicating a potential confidentiality impact. Server-side access control appears insufficient to pr...
CVE-2024-4537 IDOR vulnerability in Janto Ticketing Software
IDOR vulnerability in Janto Ticketing Software affecting version 4.3r10. This vulnerability could allow a remote user to obtain the download URL of another user to obtain the purchased ticket...
PT-2022-10485 · Otrs +3 · Otrs +3
Name of the Vulnerable Software and Affected Versions: OTRS versions affected versions not specified OTRS ITSM versions affected versions not specified OTRS Storm versions affected versions not specified Description: The issue allows the execution of any system command through a specially crafted...
SQL Injection Vulnerability in Ticketing Software of Shanghai Shengdai Information Technology Co.
Ltd. Ticketing software is a special ticket management system for airline ticketing agents, integrating online booking management, telephone recording screen, corporate travel management, order management, membership management, points management, SMS sending, staff management, report generation,...