Lucene search
K

16 matches found

CNNVD
CNNVD
added 2024/04/22 12:0 a.m.5 views

Trainme Academy 安全漏洞

Trainme Academy is a leading quality education and training solution from Trainme, Inc. A security vulnerability exists in Trainme Academy version v.1.3.2. A remote attacker exploits the vulnerability to obtain sensitive information via the informacion, idcurso, and tit parameters...

9.1CVSS6.5AI score0.00611EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/04/22 12:0 a.m.14 views

CVE-2024-27574

SQL Injection vulnerability in Trainme Academy version Ichin v.1.3.2 allows a remote attacker to obtain sensitive information via the informacion, idcurso, and tit parameters...

7.5AI score0.00611EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/08 12:0 a.m.3 views

PT-2024-21956 · Unknown · Trainme Academy

Name of the Vulnerable Software and Affected Versions: Trainme Academy version Ichin v.1.3.2 Description: The issue allows a remote attacker to obtain sensitive information. This is achieved via the informacion, idcurso, and tit parameters. Recommendations: For Trainme Academy version Ichin...

9.1CVSS6.8AI score0.00611EPSS
Exploits0References5
OSV
OSV
added 2019/01/17 2:29 a.m.4 views

CVE-2018-20727

Multiple command injection vulnerabilities in NeDi before 1.7Cp3 allow authenticated users to execute code on the server side via the flt parameter to Nodes-Traffic.php, the dv parameter to Devices-Graph.php, or the tit parameter to drawmap.php...

8.8CVSS6AI score0.05609EPSS
Exploits1References2
CVE
CVE
added 2019/01/17 2:0 a.m.45 views

CVE-2018-20727

CVE-2018-20727 affects NeDi prior to 1.7Cp3. The vulnerability allows authenticated users to perform server-side command execution via user-controlled parameters: flt (Nodes-Traffic.php), dv (Devices-Graph.php), or tit (drawmap.php). This is a command-injection flaw arising from insufficient inpu...

8.8CVSS9.1AI score0.05609EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2017/11/22 7:29 p.m.14 views

CVE-2017-2735

TIT-AL00 smartphones with software versions earlier before TIT-AL00C583B214 have a exposed system interface vulnerability. The software provides a system interface for interaction with external applications, but calling the interface is not properly restricted. An attacker could trick the user in...

7.1CVSS6.8AI score0.00556EPSS
Exploits0References2
OSV
OSV
added 2017/11/22 7:29 p.m.4 views

CVE-2017-2735

TIT-AL00 smartphones with software versions earlier before TIT-AL00C583B214 have a exposed system interface vulnerability. The software provides a system interface for interaction with external applications, but calling the interface is not properly restricted. An attacker could trick the user in...

7.1CVSS5.8AI score0.00556EPSS
Exploits0References2
NVD
NVD
added 2017/11/22 7:29 p.m.10 views

CVE-2017-2695

TIT-AL00C583B211 has a directory traversal vulnerability which allows an attacker to obtain the files in email application...

5.5CVSS5.3AI score0.01091EPSS
Exploits0References1
Prion
Prion
added 2017/11/22 7:29 p.m.12 views

Design/Logic Flaw

TIT-AL00 smartphones with software versions earlier before TIT-AL00C583B214 have a exposed system interface vulnerability. The software provides a system interface for interaction with external applications, but calling the interface is not properly restricted. An attacker could trick the user in...

5.8CVSS6.7AI score0.00556EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2017/11/22 7:29 p.m.2 views

CVE-2017-2695

TIT-AL00C583B211 has a directory traversal vulnerability which allows an attacker to obtain the files in email application...

5.5CVSS5.8AI score0.01091EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/11/22 7:0 p.m.17 views

CVE-2017-2735

TIT-AL00 smartphones with software versions earlier before TIT-AL00C583B214 have a exposed system interface vulnerability. The software provides a system interface for interaction with external applications, but calling the interface is not properly restricted. An attacker could trick the user in...

6.8AI score0.00556EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/11/22 7:0 p.m.14 views

CVE-2017-2695

TIT-AL00C583B211 has a directory traversal vulnerability which allows an attacker to obtain the files in email application...

5.3AI score0.01091EPSS
Exploits0References1
CVE
CVE
added 2017/11/22 7:0 p.m.47 views

CVE-2017-2735

The CVE-2017-2735 entry relates to TIT-AL00 smartphones with software versions prior to TIT-AL00C583B214, which disclose an exposed system interface vulnerability. The issue arises because the system interface for external applications is not properly restricted, allowing an attacker to trick a u...

7.1CVSS6.7AI score0.00556EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/11/22 7:0 p.m.40 views

CVE-2017-2695

CVE-2017-2695 affects Huawei Enjoy 5 (TIT-AL00C583B211): a directory traversal flaw that lets an attacker obtain files from the email application by tricking a user into installing a malicious app and altering a URI. The underlying issue is a URI-based directory traversal in Huawei smartphones. H...

5.5CVSS5.4AI score0.01091EPSS
Exploits0References1Affected Software1
xssed
xssed
added 2007/10/02 12:0 a.m.12 views

Unfixed XSS vulnerability at www.dennistoun.co.uk

Security researcher TiT, has submitted on 10/02/2007 a cross-site-scripting XSS vulnerability affecting www.dennistoun.co.uk, which at the time of submission ranked 6054163 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 10/02/2007. It is...

Exploits0References1
securityvulns
securityvulns
added 2007/02/18 12:0 a.m.54 views

phpbb_wordsearch < = RFi Vulnerabilities

phpbbwordsearch = RFi Vulnerabilities Download : http://www.spacemarc.it/scriptphp/index.php?script=phpbbwordsearch Script Name : phpbbwordsearch Coded By : KaRTaL Contact : k4rtalatgmaildotcom V.Code in : path/rebuildsearchindex/adminrebuildsearch.php require$phpbbrootpath . 'extension.inc';...

0.4AI score
Exploits0
Rows per page
Query Builder