Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2021-29102

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00705EPSS
Exploits0References1
NVD
NVD
added 2021/11/30 12:15 p.m.15 views

CVE-2021-42545

An insufficient session expiration vulnerability exists in Business-DNA Solutions GmbH’s TopEase® Platform Version = 7.1.27, which allows a remote attacker to reuse, spoof, or steal other user and admin sessions...

9.1CVSS0.01103EPSS
Exploits0References1
NVD
NVD
added 2021/11/30 12:15 p.m.27 views

CVE-2021-42122

Insufficient Input Validation in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version = 7.1.27 on an object’s attributes with numeric format allows an authenticated remote attacker with Object Modification privileges to insert an unexpected format, which makes the...

4.3CVSS0.00748EPSS
Exploits0References1
NVD
NVD
added 2021/11/30 12:15 p.m.21 views

CVE-2021-42544

Missing Rate Limiting in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version = 7.1.27 on the Login Form allows an unauthenticated remote attacker to perform multiple login attempts, which facilitates gaining privileges...

9.8CVSS0.01365EPSS
Exploits0References1
NVD
NVD
added 2021/11/30 12:15 p.m.19 views

CVE-2021-42120

Insufficient Input Validation in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version = 7.1.27 on all object attributes allows an authenticated remote attacker with Object Modification privileges to insert arbitrarily long strings, eventually leading to exhaustion...

6.5CVSS0.01065EPSS
Exploits0References1
NVD
NVD
added 2021/11/30 12:15 p.m.18 views

CVE-2021-42118

Persistent Cross Site Scripting in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version = 7.1.27 via the Structure Component allows an authenticated remote attacker with Object Modification privileges to inject arbitrary HTML and JavaScript code in an object...

8.1CVSS0.00659EPSS
Exploits0References1
NVD
NVD
added 2021/11/30 12:15 p.m.17 views

CVE-2021-42121

Insufficient Input Validation in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version = 7.1.27 on an object’s date attributes allows an authenticated remote attacker with Object Modification privileges to insert an unexpected format into date fields, which leads t...

4.3CVSS0.00999EPSS
Exploits0References1
Prion
Prion
added 2021/11/30 12:15 p.m.9 views

Unrestricted file upload

Unrestricted File Upload in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version = 7.1.27 in the File Upload Functions allows an authenticated remote attacker with Upload privileges to upload files with any file type, enabling client-side attacks...

6.5CVSS8.5AI score0.01021EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/11/30 12:15 p.m.14 views

Session fixation

An insufficient session expiration vulnerability exists in Business-DNA Solutions GmbH’s TopEase® Platform Version = 7.1.27, which allows a remote attacker to reuse, spoof, or steal other user and admin sessions...

6.4CVSS9AI score0.01103EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/11/30 12:15 p.m.14 views

Input validation

Insufficient Input Validation in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version = 7.1.27 on an object’s date attributes allows an authenticated remote attacker with Object Modification privileges to insert an unexpected format into date fields, which...

4CVSS4.6AI score0.00999EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/11/30 11:28 a.m.41 views

CVE-2021-42545

CVE-2021-42545 : The TopEase Platform from Business-DNA Solutions GmbH is affected up to version 7.1.27 due to an insufficient session expiration issue that enables a remote attacker to reuse, spoof, or steal other user and admin sessions. The available documents identify the vulnerability as a s...

9.1CVSS8.7AI score0.01103EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/11/30 11:28 a.m.50 views

CVE-2021-42544

The CVE-2021-42544 issue affects Business-DNA Solutions GmbH TopEase Platform (Version

9.8CVSS8.8AI score0.01365EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/11/30 11:28 a.m.36 views

CVE-2021-42123

The CVE-2021-42123 entry concerns Business-DNA Solutions GmbH TopEase Platform (Web Applications) with Version

8.8CVSS7.9AI score0.01021EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/11/30 11:28 a.m.37 views

CVE-2021-42122

CVE-2021-42122 affects Business‑DNA Solutions GmbH TopEase Platform (≤7.1.27). The root cause is insufficient input validation on an object’s attributes with numeric format. An authenticated remote attacker with Object Modification privileges can insert an unexpected format, causing the affected ...

4.3CVSS4.5AI score0.00748EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/11/30 11:28 a.m.35 views

CVE-2021-42121

CVE-2021-42121 describes an insufficient input validation vulnerability in Business-DNA Solutions GmbH TopEase Platform (

4.3CVSS4.5AI score0.00999EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/11/30 11:28 a.m.45 views

CVE-2021-42120

CVE-2021-42120 affects Business-DNA Solutions GmbH TopEase Platform (Version

6.5CVSS6.4AI score0.01065EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/11/30 11:28 a.m.42 views

CVE-2021-42119

CVE-2021-42119 describes a persistent cross-site scripting vulnerability in Business-DNA Solutions GmbH TopEase platform (version ≤ 7.1.27) exposed through the Search Functionality. The issue arises when authenticated users with Object Modification privileges can inject arbitrary HTML/JavaScript ...

7.3CVSS5.6AI score0.00513EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/11/30 11:28 a.m.40 views

CVE-2021-42118

The CVE-2021-42118 entry concerns Business-DNA Solutions GmbH TopEase Platform (<= 7.1.27) via the Structure Component. Affected component is the Structure Component which allows an authenticated remote attacker with Object Modification privileges to inject arbitrary HTML/JavaScript in an obje...

8.1CVSS5.8AI score0.00659EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/11/30 11:28 a.m.25 views

CVE-2021-42118 Stored XSS in TopEase

Persistent Cross Site Scripting in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version = 7.1.27 via the Structure Component allows an authenticated remote attacker with Object Modification privileges to inject arbitrary HTML and JavaScript code in an object...

8.1CVSS7.9AI score0.00659EPSS
Exploits0References1
CVE
CVE
added 2021/11/30 11:28 a.m.39 views

CVE-2021-42117

CVE-2021-42117 affects Business-DNA Solutions GmbH TopEase Platform (Web Applications)

5.4CVSS5AI score0.00705EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder