Lucene search
K

52 matches found

nvd
nvd
added 2024/09/27 12:15 p.m.15 views

CVE-2024-8609

Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information. This issue affects ValeApp: before v2.0.0...

8.8CVSS0.00468EPSS
Exploits0References2
osv
osv
added 2024/09/27 12:15 p.m.5 views

CVE-2024-8608

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Oceanic Software ValeApp allows Stored XSS.This issue affects ValeApp: before v2.0.0...

5.4CVSS5.8AI score0.00277EPSS
Exploits0References1
osv
osv
added 2024/09/27 12:15 p.m.3 views

CVE-2024-8607

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Oceanic Software ValeApp allows SQL Injection.This issue affects ValeApp: before v2.0.0...

9.8CVSS5.8AI score0.005EPSS
Exploits0References1
attackerkb
attackerkb
added 2024/09/27 12:15 p.m.7 views

CVE-2024-8609

Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information. This issue affects ValeApp: before v2.0.0...

8.8CVSS5.8AI score0.00468EPSS
Exploits0References3
attackerkb
attackerkb
added 2024/09/27 12:15 p.m.5 views

CVE-2024-8607

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Oceanic Software ValeApp allows SQL Injection. This issue affects ValeApp: before v2.0.0...

9.8CVSS5.8AI score0.005EPSS
Exploits0References3
attackerkb
attackerkb
added 2024/09/27 12:15 p.m.6 views

CVE-2024-8608

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Oceanic Software ValeApp allows Stored XSS. This issue affects ValeApp: before v2.0.0...

7.2CVSS5.8AI score0.00277EPSS
Exploits0References3
nvd
nvd
added 2024/09/27 12:15 p.m.9 views

CVE-2024-8607

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Oceanic Software ValeApp allows SQL Injection. This issue affects ValeApp: before v2.0.0...

9.8CVSS0.005EPSS
Exploits0References2
osv
osv
added 2024/09/27 12:15 p.m.3 views

CVE-2024-8609

Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information.This issue affects ValeApp: before v2.0.0...

7.5CVSS5.8AI score0.00468EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/09/27 12:4 p.m.14 views

CVE-2024-8607 SQLi in Oceanic Software's ValeApp

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Oceanic Software ValeApp allows SQL Injection. This issue affects ValeApp: before v2.0.0...

8.7CVSS5.8AI score0.005EPSS
Exploits0References2
cvelist
cvelist
added 2024/09/27 12:4 p.m.20 views

CVE-2024-8607 SQLi in Oceanic Software's ValeApp

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Oceanic Software ValeApp allows SQL Injection. This issue affects ValeApp: before v2.0.0...

8.7CVSS0.005EPSS
Exploits0References2
cve
cve
added 2024/09/27 12:4 p.m.50 views

CVE-2024-8607

CVE-2024-8607 affects ValeApp by Oceanic Software, with the vulnerability lying in improper neutralization of special elements in SQL commands (SQL Injection) in ValeApp versions before 2.0.0. Reported impact aligns with high-severity scores (CVSS v3.1: 9.8, NETWORK, HIGH confidentiality/integrit...

9.8CVSS5.8AI score0.005EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2024/09/27 12:0 p.m.19 views

CVE-2024-8608 Stored XSS in Oceanic Software's ValeApp

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Oceanic Software ValeApp allows Stored XSS. This issue affects ValeApp: before v2.0.0...

7.2CVSS0.00277EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2024/09/27 12:0 p.m.18 views

CVE-2024-8608 Stored XSS in Oceanic Software's ValeApp

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Oceanic Software ValeApp allows Stored XSS. This issue affects ValeApp: before v2.0.0...

7.2CVSS5.8AI score0.00277EPSS
Exploits0References2
cve
cve
added 2024/09/27 12:0 p.m.60 views

CVE-2024-8608

CVE-2024-8608 corresponds to a Stored XSS in Oceanic Software’s ValeApp, caused by improper neutralization during web page generation. Affected: ValeApp versions prior to 2.0.0. Impact and exploit details are not provided beyond the XSS claim in the sources; mitigation guidance from PT-2024-39129...

7.2CVSS5.8AI score0.00277EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2024/09/27 11:55 a.m.15 views

CVE-2024-8609 Improper Access Control in Oceanic Software's ValeApp

Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information. This issue affects ValeApp: before v2.0.0...

8.8CVSS5.8AI score0.00468EPSS
Exploits0References2
cvelist
cvelist
added 2024/09/27 11:55 a.m.18 views

CVE-2024-8609 Improper Access Control in Oceanic Software's ValeApp

Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information. This issue affects ValeApp: before v2.0.0...

8.8CVSS0.00468EPSS
Exploits0References2
cve
cve
added 2024/09/27 11:55 a.m.59 views

CVE-2024-8609

ValeApp (Oceanic Software) prior to version 2.0.0 has a vulnerability that allows insertion of sensitive information into log files, which can enable a query system for information. Impact and exact exploit details are not fully provided in the sources, but PT-2024-39130 notes that versions befor...

8.8CVSS5.8AI score0.00468EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2024/09/27 11:53 a.m.12 views

CVE-2024-8643 Session Hijacking in Oceanic Software's ValeApp

Session Fixation vulnerability in Oceanic Software ValeApp allows Brute Force, Session Hijacking. This issue affects ValeApp: before v2.0.0...

9.3CVSS5.8AI score0.0046EPSS
Exploits0References2
cvelist
cvelist
added 2024/09/27 11:53 a.m.28 views

CVE-2024-8643 Session Hijacking in Oceanic Software's ValeApp

Session Fixation vulnerability in Oceanic Software ValeApp allows Brute Force, Session Hijacking. This issue affects ValeApp: before v2.0.0...

9.3CVSS0.0046EPSS
Exploits0References2
cve
cve
added 2024/09/27 11:53 a.m.47 views

CVE-2024-8643

The CVE-2024-8643 entry relates to ValeApp from Oceanic Software and is supported by PT-2024-39148 details: versions prior to 2.0.0 are affected by a Session Fixation flaw that enables Brute Force and Session Hijacking. The vulnerability description explicitly ties the issue to the authentication...

9.8CVSS5.8AI score0.0046EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder