Lucene search
K

3225 matches found

Cvelist
Cvelist
added 2026/06/05 2:2 p.m.42 views

CVE-2026-6208

...

Exploits0
CVE
CVE
added 2026/06/05 2:2 p.m.26 views

CVE-2026-6208

CVE-2026-6208 entry is rejected/not used and does not represent an active vulnerability.

5.5AI score
Exploits0
EUVD
EUVD
added 2026/06/05 2:2 p.m.10 views

EUVD-2026-34840

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

9.1CVSS5.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/05 12:0 a.m.17 views

PT-2026-46966

Authorization bypass through User-Controlled key vulnerability in HAVELSAN Inc. Geographic Tracking System allows Exploitation of Trusted Identifiers. This issue affects Geographic Tracking System: before v0.0.2...

9.1CVSS5.5AI score
Exploits0References2
OSV
OSV
added 2026/06/04 6:46 p.m.6 views

GHSA-XF4V-W5X5-PV79 Spree: CSV Formula Injection in Customer Export

Summary CSV formula injection also known as formula injection or CSV injection affects customer export. User-controlled values customer names, email addresses, and shipping addresses. When an administrator opens a crafted Export in Microsoft Excel or LibreOffice Calc, formulas embedded in user da...

5.2CVSS6AI score
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/06/04 6:46 p.m.27 views

Spree: CSV Formula Injection in Customer Export

Summary CSV formula injection also known as formula injection or CSV injection affects customer export. User-controlled values customer names, email addresses, and shipping addresses. When an administrator opens a crafted Export in Microsoft Excel or LibreOffice Calc, formulas embedded in user da...

6AI score
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/06/04 1:44 p.m.11 views

EUVD-2026-34265

A security issue was fixed in the correlations over-correlation endpoint where the order query parameter was accepted from user-controlled named request parameters. This allowed an authenticated user to override the server-defined ordering of over-correlating values. Depending on how the value wa...

6.4CVSS5.8AI score0.00225EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/04 1:44 p.m.43 views

CVE-2026-10863 MISP User-controlled order parameter in correlations over-correlation endpoint

A security issue was fixed in the correlations over-correlation endpoint where the order query parameter was accepted from user-controlled named request parameters. This allowed an authenticated user to override the server-defined ordering of over-correlating values. Depending on how the value wa...

6.4CVSS0.00225EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/04 11:14 a.m.38 views

CVE-2026-4104 SQLi in Akmer Informatics' TeknoPass

Authorization bypass through User-Controlled SQL primary key vulnerability in Akmer Informatics Automation Industry and Trade Ltd. Co. TeknoPass allows SQL Injection. This issue affects TeknoPass: from 20210501 through 20260429...

9.8CVSS0.00302EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/04 11:14 a.m.7 views

CVE-2026-4104

Authorization bypass through User-Controlled SQL primary key vulnerability in Akmer Informatics Automation Industry and Trade Ltd. Co. TeknoPass allows SQL Injection. This issue affects TeknoPass: from 20210501 through 20260429...

9.8CVSS5.9AI score0.00302EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/06/04 11:14 a.m.12 views

EUVD-2026-34243

Authorization bypass through User-Controlled SQL primary key vulnerability in Akmer Informatics Automation Industry and Trade Ltd. Co. TeknoPass allows SQL Injection. This issue affects TeknoPass: from 20210501 through 20260429...

9.8CVSS5.9AI score0.00302EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.10 views

PT-2026-49156

Summary CSV formula injection also known as formula injection or CSV injection affects customer export. User-controlled values customer names, email addresses, and shipping addresses. When an administrator opens a crafted Export in Microsoft Excel or LibreOffice Calc, formulas embedded in user da...

5.2CVSS5.8AI score
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.16 views

PT-2026-46193

Name of the Vulnerable Software and Affected Versions TeknoPass versions 20210501 through 20260429 Description An authorization bypass exists due to a user-controlled SQL primary key issue, which allows for SQL Injection. SQL Injection is a technique where an attacker inserts malicious SQL code...

9.8CVSS5.8AI score0.00302EPSS
Exploits0References4
NVD
NVD
added 2026/06/03 11:16 a.m.14 views

CVE-2025-14772

Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8.8CVSS0.00292EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/03 9:25 a.m.8 views

CVE-2025-14772 Broken Access Control in ABB T-MAC Plus web application

Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8.8CVSS5.8AI score0.00292EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/03 9:25 a.m.38 views

CVE-2025-14772 Broken Access Control in ABB T-MAC Plus web application

Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8.8CVSS0.00292EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/03 9:25 a.m.6 views

CVE-2025-14772

Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8.8CVSS5.8AI score0.00292EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/06/03 9:25 a.m.18 views

EUVD-2025-210051

Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8.8CVSS5.8AI score0.00292EPSS
Exploits0References1
CVE
CVE
added 2026/06/03 9:25 a.m.17 views

CVE-2025-14772

CVE-2025-14772 concerns ABB T-MAC Plus, affected version 4.0-24. The issue is described as an authorization bypass via a User-Controlled key, indicating a broken access control vulnerability in the web application. Connected documents (NVD and CVE records) corroborate the same title and descripti...

8.8CVSS5.8AI score0.00292EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.11 views

PT-2026-45908

Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8.8CVSS5.8AI score0.00292EPSS
Exploits0References3
Rows per page
Query Builder