Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2025/07/22 12:0 a.m.1 views

CVE-2025-31511

An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can bypass manager approval by changing the user ID in a Request%20Building%20Access requestSubmit API call. The vendor has stated that the system is protected by updating to a version equal to or greater than one of the...

6.3AI score0.0036EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/16 12:0 a.m.6 views

PT-2024-25996 · Sunhillo · Sunhillo Sureline

Name of the Vulnerable Software and Affected Versions: Sunhillo SureLine versions through 8.10.0 Description: The issue allows for cgi/usrPasswd.cgi userid change XSS within the Forgot Password feature. This can be exploited through the /cgi/usrPasswd.cgi endpoint, specifically targeting the user...

6.1CVSS6AI score0.00398EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2023/11/09 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for postgresql (EulerOS-SA-2023-3146)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.01572EPSS
Exploits0References2
Hacker One
Hacker One
added 2022/07/06 2:0 p.m.17 views

U.S. Dept Of Defense: Account takeover on ███████ [HtUS]

Hello, I have found an endpoint in ████████ is vulnerable to Account takeover Steps to reproduce: 1. Create 2 accounts Attacker A and vicitm B 2. Log in to all of them and go to https://███████/███████/EditUserProfile with attacker's account 3. Now fill out the password with your password 4. Chan...

0.5AI score
Exploits0
Rows per page
Query Builder