364 matches found
EUVD-2019-3029
Malware in sbrugna...
EUVD-2025-28995
Malicious code in bioql PyPI...
EUVD-2025-16835
Malicious code in bioql PyPI...
EUVD-2025-28996
Malicious code in bioql PyPI...
EUVD-2025-29001
Malicious code in bioql PyPI...
EUVD-2025-26510
Malicious code in bioql PyPI...
CVE-2025-10274
A security flaw has been discovered in erjinzhi 10OA 1.0. Affected by this issue is some unknown functionality of the file /trial/mvc/item. Performing manipulation of the argument Name results in cross site scripting. The attack may be initiated remotely. The exploit has been released to the publ...
CVE-2025-10271
A vulnerability was found in erjinzhi 10OA 1.0. This impacts an unknown function of the file /trial/mvc/finder. The manipulation of the argument Name results in cross site scripting. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor was...
CVE-2025-10274
A security flaw has been discovered in erjinzhi 10OA 1.0. Affected by this issue is some unknown functionality of the file /trial/mvc/item. Performing manipulation of the argument Name results in cross site scripting. The attack may be initiated remotely. The exploit has been released to the publ...
CVE-2025-10274
A security flaw has been discovered in erjinzhi 10OA 1.0. Affected by this issue is some unknown functionality of the file /trial/mvc/item. Performing manipulation of the argument Name results in cross site scripting. The attack may be initiated remotely. The exploit has been released to the publ...
CVE-2025-10274 erjinzhi 10OA item cross site scripting
A security flaw has been discovered in erjinzhi 10OA 1.0. Affected by this issue is some unknown functionality of the file /trial/mvc/item. Performing manipulation of the argument Name results in cross site scripting. The attack may be initiated remotely. The exploit has been released to the publ...
CVE-2025-10274
The CVE-2025-10274 entry concerns erjinzhi 10OA 1.0 with a vulnerability in the file /trial/mvc/item where manipulation of the Name argument enables cross-site scripting. The issue is exploitable remotely and an exploit has been released publicly; vendor was contacted but did not respond. Availab...
PT-2025-37269
Name of the Vulnerable Software and Affected Versions: erjinzhi 10OA version 1.0 Description: A security flaw exists in erjinzhi 10OA version 1.0. The issue is related to some unknown functionality within the file /trial/mvc/item. Manipulation of the Name argument can lead to cross-site scripting...
erjinzhi 10OA 安全漏洞
erjinzhi 10OA is an enterprise automation system from China Binary erjinzhi. A security vulnerability exists in erjinzhi 10OA version 1.0, which stems from an incorrect manipulation of the parameter Name in the file /trial/mvc/item, which could lead to a cross-site scripting attack...
CVE-2025-10272
A vulnerability was determined in erjinzhi 10OA 1.0. Affected is an unknown function of the file /trial/mvc/catalogue. This manipulation of the argument Name causes cross site scripting. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor...
CVE-2025-10272
A vulnerability was determined in erjinzhi 10OA 1.0. Affected is an unknown function of the file /trial/mvc/catalogue. This manipulation of the argument Name causes cross site scripting. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor...
CVE-2025-10271
CVE-2025-10271 affects erjinzhi 10OA 1.0. The vulnerability is in the server-side processing of the Name argument within the file /trial/mvc/finder, where improper handling enables cross-site scripting (XSS). The issue appears to be exploitable remotely and publicly disclosed, with exploitation d...
CVE-2025-10271 erjinzhi 10OA finder cross site scripting
A vulnerability was found in erjinzhi 10OA 1.0. This impacts an unknown function of the file /trial/mvc/finder. The manipulation of the argument Name results in cross site scripting. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor was...
erjinzhi 10OA 代码注入漏洞
erjinzhi 10OA is an enterprise automation system from China Binary erjinzhi. A code injection vulnerability exists in erjinzhi 10OA version 1.0, which stems from an incorrect manipulation of the parameter Name in the file /trial/mvc/finder, and could lead to a cross-site scripting attack...
CVE-2025-21028
Improper privilege management in ThemeManager prior to SMR Sep-2025 Release 1 allows local privileged attackers to reuse trial items...