CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SAP PowerDesigner is a database design software from SAP Germany. A code injection vulnerability exists in SAP PowerDesigner version 16.7 that originates from allowing an unauthenticated attacker to inject VBScript code into a document. An attacker could exploit this vulnerability to cause...

6.3CVSS7.7AI score0.00336EPSS

Exploits0References1

Prion•added 2023/09/12 3:15 a.m.•15 views

Default credentials

SAP PowerDesigner Client - version 16.7, allows an unauthenticated attacker to inject VBScript code in a document and have it opened by an unsuspecting user, to have it executed by the application on behalf of the user. The application has a security option to disable or prompt users before...

6.8CVSS6.4AI score0.00336EPSS

Exploits0References2Affected Software1

Prion•added 2014/02/22 9:55 p.m.•13 views

Design/Logic Flaw

Untrusted search path vulnerability in Autodesk AutoCAD before 2014 allows local users to gain privileges and execute arbitrary VBScript code via a Trojan horse FAS file in the FAS file search path...

7.5CVSS7.6AI score0.00779EPSS

Exploits1References2Affected Software1

Cvelist•added 2008/09/17 6:6 p.m.•14 views

CVE-2008-1093

Acresso InstallShield Update Agent does not properly verify the authenticity of Rule Scripts obtained from GetRules.asp web pages on FLEXnet Connect servers, which allows remote man-in-the-middle attackers to execute arbitrary VBScript code via Trojan horse Rules...

7.4AI score0.00749EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by