40 matches found
Temenos Transact - Cross-Site Scripting
Multiple vulnerabilities in Temenos Transact formerly T24 that allows multiple reflected cross-site scripting XSS attacks. id: CVE-2022-38322 info: name: Temenos Transact - Cross-Site Scripting author: qotoz severity: high description: | Multiple vulnerabilities in Temenos Transact formerly T24...
EUVD-2020-3850
Malware in sbrugna...
EUVD-2010-3244
Malware in sbrugna...
EUVD-2010-3243
Malware in sbrugna...
CVE-2025-10618
A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2025-10618
A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2025-10618
A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2025-10618 itsourcecode Online Clinic Management System transact.php sql injection
A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2025-10618 itsourcecode Online Clinic Management System transact.php sql injection
A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2025-10618
The CVE-2025-10618 issue affects itsourcecode Online Clinic Management System 1.0, specifically the transact.php file where manipulation of the firstname parameter enables a SQL injection. Multiple connected sources corroborate remote exploitability and publicly disclosed PoCs. Evidence across NV...
PT-2025-38277
Name of the Vulnerable Software and Affected Versions: itsourcecode Online Clinic Management System version 1.0 Description: A security issue exists in itsourcecode Online Clinic Management System 1.0 related to the transact.php file. Manipulation of the firstname parameter can lead to SQL...
CVE-2025-48540
In processTransactInternal of RpcState.cpp, there is a possible local out of memory write due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-48540
In processTransactInternal of RpcState.cpp, there is a possible local out of memory write due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-48540
CVE-2025-48540 describes a local elevation-of-privilege vulnerability in the Android stack caused by a logic error in processTransactInternal of RpcState.cpp, which can trigger a local out-of-memory write. Exploitation requires local access; no user interaction is needed. Public references in And...
ASB-A-416734088
In processTransactInternal of RpcState.cpp, there is a possible local out of memory write due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2010-3244
BbtsConnectionEdit.exe in Blackboard Transact Suite formerly Blackboard Commerce Suite before 3.6.0.2 relies on field names when determining whether it is appropriate to decrypt a connection.xml field value, which allows local users to discover the database password via a modified connection.xml...
CVE-2010-3245
The automated-backup functionality in Blackboard Transact Suite formerly Blackboard Commerce Suite stores the 1 database username and 2 database password in cleartext in a script and b batch .bat files, which allows local users to obtain sensitive information by reading a file...
CVE-2018-9345
In BnAudioPolicyService::onTransact of AudioPolicyService.cpp, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
Elasticsearch Database Mess Up Exposed Login, PII Data of 30,000 Students
By Deeba Ahmed The misconfigured Elasticsearch database apparently belonged to the US-based software solution provider Transact Campus. SafetyDetectives’ cybersecurity research team… This is a post from HackRead.com Read the original post: Elasticsearch Database Mess Up Exposed Login, PII Data of...
CVE-2020-11497
An issue was discovered in the NAB Transact extension 2.1.0 for the WooCommerce plugin for WordPress. An online payment system bypass allows orders to be marked as fully paid by assigning an arbitrary bank transaction ID during the payment-details entry step...