Lucene search
K

40 matches found

Nuclei
Nuclei
added 2026/02/04 7:0 a.m.77 views

Temenos Transact - Cross-Site Scripting

Multiple vulnerabilities in Temenos Transact formerly T24 that allows multiple reflected cross-site scripting XSS attacks. id: CVE-2022-38322 info: name: Temenos Transact - Cross-Site Scripting author: qotoz severity: high description: | Multiple vulnerabilities in Temenos Transact formerly T24...

6.2AI score
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-3850

Malware in sbrugna...

7.5CVSS7.4AI score0.01152EPSS
Exploits4References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-3244

Malware in sbrugna...

2.1CVSS6.4AI score0.00876EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-3243

Malware in sbrugna...

4.6CVSS6.4AI score0.00303EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/09/19 9:26 p.m.13 views

CVE-2025-10618

A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...

8.8CVSS7.2AI score0.00437EPSS
Exploits1References1
NVD
NVD
added 2025/09/17 9:15 p.m.6 views

CVE-2025-10618

A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...

8.8CVSS0.00437EPSS
Exploits1References5
OSV
OSV
added 2025/09/17 9:15 p.m.6 views

CVE-2025-10618

A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...

8.8CVSS5.8AI score0.00437EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/09/17 9:2 p.m.11 views

CVE-2025-10618 itsourcecode Online Clinic Management System transact.php sql injection

A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...

6.5CVSS0.00437EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/09/17 9:2 p.m.2 views

CVE-2025-10618 itsourcecode Online Clinic Management System transact.php sql injection

A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...

6.5CVSS6.4AI score0.00437EPSS
Exploits1References5
CVE
CVE
added 2025/09/17 9:2 p.m.15 views

CVE-2025-10618

The CVE-2025-10618 issue affects itsourcecode Online Clinic Management System 1.0, specifically the transact.php file where manipulation of the firstname parameter enables a SQL injection. Multiple connected sources corroborate remote exploitability and publicly disclosed PoCs. Evidence across NV...

8.8CVSS6.8AI score0.00437EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/17 12:0 a.m.5 views

PT-2025-38277

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Clinic Management System version 1.0 Description: A security issue exists in itsourcecode Online Clinic Management System 1.0 related to the transact.php file. Manipulation of the firstname parameter can lead to SQL...

6.5CVSS6.5AI score0.00437EPSS
Exploits1References9
OSV
OSV
added 2025/09/04 7:15 p.m.4 views

CVE-2025-48540

In processTransactInternal of RpcState.cpp, there is a possible local out of memory write due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score0.00091EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2025/09/04 6:34 p.m.4 views

CVE-2025-48540

In processTransactInternal of RpcState.cpp, there is a possible local out of memory write due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score0.00091EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2025/09/04 6:34 p.m.34 views

CVE-2025-48540

CVE-2025-48540 describes a local elevation-of-privilege vulnerability in the Android stack caused by a logic error in processTransactInternal of RpcState.cpp, which can trigger a local out-of-memory write. Exploitation requires local access; no user interaction is needed. Public references in And...

7.8CVSS6.4AI score0.00091EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/09/01 12:0 a.m.12 views

ASB-A-416734088

In processTransactInternal of RpcState.cpp, there is a possible local out of memory write due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.9AI score0.00091EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 4:26 a.m.5 views

CVE-2010-3244

BbtsConnectionEdit.exe in Blackboard Transact Suite formerly Blackboard Commerce Suite before 3.6.0.2 relies on field names when determining whether it is appropriate to decrypt a connection.xml field value, which allows local users to discover the database password via a modified connection.xml...

4.6CVSS6.7AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:26 a.m.11 views

CVE-2010-3245

The automated-backup functionality in Blackboard Transact Suite formerly Blackboard Commerce Suite stores the 1 database username and 2 database password in cleartext in a script and b batch .bat files, which allows local users to obtain sensitive information by reading a file...

2.1CVSS6.3AI score0.00876EPSS
Exploits0References1
OSV
OSV
added 2024/11/19 7:15 p.m.5 views

CVE-2018-9345

In BnAudioPolicyService::onTransact of AudioPolicyService.cpp, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.9AI score0.00084EPSS
Exploits0References1
HackRead
HackRead
added 2022/06/15 9:44 p.m.23 views

Elasticsearch Database Mess Up Exposed Login, PII Data of 30,000 Students

By Deeba Ahmed The misconfigured Elasticsearch database apparently belonged to the US-based software solution provider Transact Campus. SafetyDetectives’ cybersecurity research team… This is a post from HackRead.com Read the original post: Elasticsearch Database Mess Up Exposed Login, PII Data of...

1.8AI score
Exploits0
NVD
NVD
added 2020/08/26 7:15 p.m.19 views

CVE-2020-11497

An issue was discovered in the NAB Transact extension 2.1.0 for the WooCommerce plugin for WordPress. An online payment system bypass allows orders to be marked as fully paid by assigning an arbitrary bank transaction ID during the payment-details entry step...

7.5CVSS7.5AI score0.01152EPSS
Exploits4References3
Rows per page
Query Builder