Lucene search
+L

364 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-3029

Malware in sbrugna...

9.8CVSS9.5AI score0.01787EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-28995

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.00332EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-16835

Malicious code in bioql PyPI...

5.5CVSS6.6AI score0.00104EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.22 views

EUVD-2025-28996

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.00332EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-29001

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.00332EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-26510

Malicious code in bioql PyPI...

5.5CVSS6.5AI score0.001EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/14 12:10 a.m.12 views

CVE-2025-10274

A security flaw has been discovered in erjinzhi 10OA 1.0. Affected by this issue is some unknown functionality of the file /trial/mvc/item. Performing manipulation of the argument Name results in cross site scripting. The attack may be initiated remotely. The exploit has been released to the publ...

6.1CVSS5.4AI score0.00332EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/09/13 10:26 p.m.8 views

CVE-2025-10271

A vulnerability was found in erjinzhi 10OA 1.0. This impacts an unknown function of the file /trial/mvc/finder. The manipulation of the argument Name results in cross site scripting. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor was...

6.1CVSS5.4AI score0.00332EPSS
Exploits1References1
NVD
NVD
added 2025/09/12 1:15 a.m.8 views

CVE-2025-10274

A security flaw has been discovered in erjinzhi 10OA 1.0. Affected by this issue is some unknown functionality of the file /trial/mvc/item. Performing manipulation of the argument Name results in cross site scripting. The attack may be initiated remotely. The exploit has been released to the publ...

6.1CVSS0.00332EPSS
Exploits1References4
OSV
OSV
added 2025/09/12 1:15 a.m.5 views

CVE-2025-10274

A security flaw has been discovered in erjinzhi 10OA 1.0. Affected by this issue is some unknown functionality of the file /trial/mvc/item. Performing manipulation of the argument Name results in cross site scripting. The attack may be initiated remotely. The exploit has been released to the publ...

6.1CVSS4.1AI score0.00332EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/09/12 12:2 a.m.4 views

CVE-2025-10274 erjinzhi 10OA item cross site scripting

A security flaw has been discovered in erjinzhi 10OA 1.0. Affected by this issue is some unknown functionality of the file /trial/mvc/item. Performing manipulation of the argument Name results in cross site scripting. The attack may be initiated remotely. The exploit has been released to the publ...

5.3CVSS5.2AI score0.00332EPSS
Exploits1References4
CVE
CVE
added 2025/09/12 12:2 a.m.29 views

CVE-2025-10274

The CVE-2025-10274 entry concerns erjinzhi 10OA 1.0 with a vulnerability in the file /trial/mvc/item where manipulation of the Name argument enables cross-site scripting. The issue is exploitable remotely and an exploit has been released publicly; vendor was contacted but did not respond. Availab...

6.1CVSS5.2AI score0.00332EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/12 12:0 a.m.8 views

PT-2025-37269

Name of the Vulnerable Software and Affected Versions: erjinzhi 10OA version 1.0 Description: A security flaw exists in erjinzhi 10OA version 1.0. The issue is related to some unknown functionality within the file /trial/mvc/item. Manipulation of the Name argument can lead to cross-site scripting...

5.3CVSS3.7AI score0.00332EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/09/12 12:0 a.m.6 views

erjinzhi 10OA 安全漏洞

erjinzhi 10OA is an enterprise automation system from China Binary erjinzhi. A security vulnerability exists in erjinzhi 10OA version 1.0, which stems from an incorrect manipulation of the parameter Name in the file /trial/mvc/item, which could lead to a cross-site scripting attack...

6.1CVSS4.4AI score0.00332EPSS
Exploits1References5
OSV
OSV
added 2025/09/11 11:15 p.m.5 views

CVE-2025-10272

A vulnerability was determined in erjinzhi 10OA 1.0. Affected is an unknown function of the file /trial/mvc/catalogue. This manipulation of the argument Name causes cross site scripting. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor...

6.1CVSS4.1AI score0.00332EPSS
Exploits1References4
NVD
NVD
added 2025/09/11 11:15 p.m.5 views

CVE-2025-10272

A vulnerability was determined in erjinzhi 10OA 1.0. Affected is an unknown function of the file /trial/mvc/catalogue. This manipulation of the argument Name causes cross site scripting. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor...

6.1CVSS0.00332EPSS
Exploits1References4
CVE
CVE
added 2025/09/11 9:32 p.m.18 views

CVE-2025-10271

CVE-2025-10271 affects erjinzhi 10OA 1.0. The vulnerability is in the server-side processing of the Name argument within the file /trial/mvc/finder, where improper handling enables cross-site scripting (XSS). The issue appears to be exploitable remotely and publicly disclosed, with exploitation d...

6.1CVSS5.3AI score0.00332EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/11 9:32 p.m.6 views

CVE-2025-10271 erjinzhi 10OA finder cross site scripting

A vulnerability was found in erjinzhi 10OA 1.0. This impacts an unknown function of the file /trial/mvc/finder. The manipulation of the argument Name results in cross site scripting. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor was...

5.3CVSS5.3AI score0.00332EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/09/11 12:0 a.m.4 views

erjinzhi 10OA 代码注入漏洞

erjinzhi 10OA is an enterprise automation system from China Binary erjinzhi. A code injection vulnerability exists in erjinzhi 10OA version 1.0, which stems from an incorrect manipulation of the parameter Name in the file /trial/mvc/finder, and could lead to a cross-site scripting attack...

6.1CVSS4.8AI score0.00332EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/09/05 6:15 a.m.16 views

CVE-2025-21028

Improper privilege management in ThemeManager prior to SMR Sep-2025 Release 1 allows local privileged attackers to reuse trial items...

5.5CVSS6.5AI score0.001EPSS
Exploits0References1
Rows per page
Query Builder